Back to bug 1403145
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-12-09 08:41:54 UTC | Depends On | 1403146 | |
| Adam Mariš | 2016-12-09 08:46:11 UTC | Blocks | 1403147 | |
| Norman Sardella | 2016-12-10 09:11:54 UTC | CC | sardella | |
| Slawomir Czarko | 2016-12-12 09:37:44 UTC | CC | slawomir | |
| Hanns-Joachim Uhl | 2016-12-12 14:05:34 UTC | CC | hannsj_uhl | |
| Vladis Dronov | 2017-01-19 11:26:49 UTC | CC | vdronov | |
| Vladis Dronov | 2017-01-19 14:17:07 UTC | Doc Text | The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device. | |
| Vladis Dronov | 2017-01-19 14:18:48 UTC | Doc Type | If docs needed, set a value | Bug Fix |
| Vladis Dronov | 2017-01-19 14:46:08 UTC | Whiteboard | impact=moderate,public=20161125,reported=20161208,source=distros,cvss2=6.2/AV:L/AC:H/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-416,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected | impact=moderate,public=20161125,reported=20161208,source=distros,cvss2=6.2/AV:L/AC:H/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-416,rhel-5/kernel=notaffected,rhel-6/kernel=affected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
| Vladis Dronov | 2017-01-19 14:53:20 UTC | Depends On | 1414823 | |
| Vladis Dronov | 2017-01-19 15:00:22 UTC | Depends On | 1414834 | |
| Vladis Dronov | 2017-01-19 15:00:31 UTC | Depends On | 1414835 | |
| Vladis Dronov | 2017-01-19 15:00:37 UTC | Depends On | 1414836 | |
| Vladis Dronov | 2017-01-19 15:00:47 UTC | Depends On | 1414837 | |
| Karl Abbott | 2017-01-20 20:37:02 UTC | CC | kabbott | |
| Yasuhiro Ozone | 2017-01-29 22:53:46 UTC | CC | yozone | |
| Martin Prpič | 2017-03-20 09:47:14 UTC | Doc Text | The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device. | It was found that the blk_rq_map_user_iov() function in the Linux kernel's block device implementation did not properly restrict the type of iterator, which could allow a local attacker to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging write access to a /dev/sg device. |
| kat | 2017-03-24 00:43:23 UTC | CC | kbost | |
| afox | 2017-03-31 11:09:46 UTC | CC | afox | |
| PnT Account Manager | 2018-02-07 23:22:21 UTC | CC | agordeev | |
| PnT Account Manager | 2018-07-19 06:23:25 UTC | CC | mguzik | |
| PnT Account Manager | 2018-08-28 22:11:06 UTC | CC | lwang | |
| Eric Sammons | 2019-02-08 15:01:28 UTC | CC | esammons | |
| PnT Account Manager | 2019-02-28 22:31:22 UTC | CC | jkastner | |
| Product Security DevOps Team | 2019-06-08 03:04:08 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 03:04:08 UTC | |||
| Product Security DevOps Team | 2019-09-29 14:02:45 UTC | Whiteboard | impact=moderate,public=20161125,reported=20161208,source=distros,cvss2=6.2/AV:L/AC:H/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-416,rhel-5/kernel=notaffected,rhel-6/kernel=affected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
Back to bug 1403145