Back to bug 1312298
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-02-26 10:52:43 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-02-26 10:52:43 UTC | Doc Type | --- | Bug Fix |
| Adam Mariš | 2016-02-26 10:56:36 UTC | Blocks | 1312299 | |
| Adam Mariš | 2016-02-29 13:49:37 UTC | Summary | EMBARGOED kernel: Kernel memory leakage to ethernet frames due to buffer overflow in ethernet drivers | EMBARGOED CVE-2016-2117 kernel: Kernel memory leakage to ethernet frames due to buffer overflow in ethernet drivers |
| Alias | CVE-2016-2117 | |||
| Andrej Nemec | 2016-03-16 14:39:44 UTC | Whiteboard | impact=moderate,public=no,reported=20160225,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected | impact=moderate,public=20160316,reported=20160225,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected |
| Andrej Nemec | 2016-03-16 14:39:53 UTC | Summary | EMBARGOED CVE-2016-2117 kernel: Kernel memory leakage to ethernet frames due to buffer overflow in ethernet drivers | CVE-2016-2117 kernel: Kernel memory leakage to ethernet frames due to buffer overflow in ethernet drivers |
| Andrej Nemec | 2016-03-16 14:40:01 UTC | Group | security, qe_staff | |
| Andrej Nemec | 2016-03-16 14:40:24 UTC | Depends On | 1318336 | |
| Slawomir Czarko | 2016-03-17 09:43:21 UTC | CC | slawomir | |
| Salvatore Bonaccorso | 2016-03-19 17:52:02 UTC | CC | gagriogi | |
| CC | carnil | |||
| Vladis Dronov | 2016-03-21 16:48:01 UTC | Whiteboard | impact=moderate,public=20160316,reported=20160225,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected | impact=moderate,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected |
| Vladis Dronov | 2016-03-21 16:48:13 UTC | Whiteboard | impact=moderate,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected | impact=low,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected |
| Vladis Dronov | 2016-03-21 16:48:23 UTC | Severity | medium | low |
| Vladis Dronov | 2016-03-21 16:48:35 UTC | Priority | medium | low |
| Vladis Dronov | 2016-03-22 09:38:10 UTC | CC | vdronov | |
| Whiteboard | impact=low,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected | impact=low,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=notaffected,rhel-6/kernel=affected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | ||
| Vladis Dronov | 2016-03-22 10:28:51 UTC | Depends On | 1320105 | |
| Vladis Dronov | 2016-03-22 10:29:00 UTC | Depends On | 1320106 | |
| Vladis Dronov | 2016-03-22 10:29:12 UTC | Depends On | 1320107 | |
| Vladis Dronov | 2016-03-22 10:29:17 UTC | Depends On | 1320108 | |
| Vladis Dronov | 2016-03-22 10:29:26 UTC | Depends On | 1320109 | |
| Vladis Dronov | 2016-04-28 09:36:13 UTC | Whiteboard | impact=low,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=notaffected,rhel-6/kernel=affected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | impact=low,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-08-19 14:12:24 UTC | Doc Text | It was discovered that the atl2_probe() function in 'drivers/net/ethernet/atheros/atlx/atl2.c' in Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from the kernel memory. | |
| Doc Type | Bug Fix | No Doc Update | ||
| John Skeoch | 2016-10-04 04:22:12 UTC | CC | pholasek | |
| Martin Prpič | 2016-11-01 15:20:30 UTC | Doc Text | It was discovered that the atl2_probe() function in 'drivers/net/ethernet/atheros/atlx/atl2.c' in Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from the kernel memory. | It was discovered that the atl2_probe() function in the Atheros L2 Ethernet driver in the Linux kernel incorrectly enabled scatter/gather I/O. A remote attacker could use this flaw to obtain potentially sensitive information from the kernel memory. |
| PnT Account Manager | 2018-01-29 16:42:49 UTC | CC | gagriogi | |
| PnT Account Manager | 2018-02-07 23:11:34 UTC | CC | agordeev | |
| PnT Account Manager | 2018-07-19 06:14:45 UTC | CC | mguzik | |
| PnT Account Manager | 2018-08-28 22:02:48 UTC | CC | lwang | |
| Eric Sammons | 2019-02-08 15:02:37 UTC | CC | esammons | |
| Product Security DevOps Team | 2019-06-08 02:48:57 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:48:57 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:45:06 UTC | Whiteboard | impact=low,public=20160316,reported=20160225,source=researcher,cvss2=2.6/AV:N/AC:H/Au:N/C:P/I:N/A:N,cwe=CWE-120,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
Back to bug 1312298