Back to bug 2188396
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Mauro Matteo Cascella | 2023-04-20 15:34:18 UTC | Depends On | 2188397 | |
| Mauro Matteo Cascella | 2023-04-20 15:38:19 UTC | Depends On | 2188409, 2188407, 2188406, 2188408 | |
| Mauro Matteo Cascella | 2023-04-20 15:49:29 UTC | Doc Text | An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not capped to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dma_buffer. This flaw could allow a privileged local user to crash the system or potentially achieve code execution. | An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not capped to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dma_buffer. This flaw could allow a local privileged user to crash the system or potentially achieve code execution. |
| David Arcari | 2023-04-24 17:54:11 UTC | Flags | needinfo?(mcascell) | |
| Doc Type | --- | If docs needed, set a value | ||
| CC | darcari | |||
| Paige Jung | 2023-04-24 17:59:18 UTC | Doc Text | An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not capped to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dma_buffer. This flaw could allow a local privileged user to crash the system or potentially achieve code execution. | An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not limited to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dma_buffer. This issue could allow a local privileged user to crash the system or potentially achieve code execution. |
| Mauro Matteo Cascella | 2023-04-24 20:49:49 UTC | Flags | needinfo?(mcascell) | |
| RHEL Program Management Team | 2023-04-25 12:02:39 UTC | Depends On | 2189482 | |
| RHEL Program Management Team | 2023-04-25 12:10:37 UTC | Depends On | 2189487 | |
| RHEL Program Management Team | 2023-04-26 18:19:56 UTC | Depends On | 2190002 | |
| RHEL Program Management Team | 2023-04-26 18:24:13 UTC | Depends On | 2190003 | |
| errata-xmlrpc | 2023-06-21 14:38:37 UTC | Link ID | Red Hat Product Errata RHSA-2023:3708 | |
| errata-xmlrpc | 2023-06-21 14:39:14 UTC | Link ID | Red Hat Product Errata RHSA-2023:3723 | |
| Red Hat Bugzilla | 2023-07-07 08:30:42 UTC | Assignee | security-response-team | nobody |
| errata-xmlrpc | 2023-08-08 07:54:19 UTC | Link ID | Red Hat Product Errata RHSA-2023:4541 | |
| errata-xmlrpc | 2023-08-08 08:19:52 UTC | Link ID | Red Hat Product Errata RHSA-2023:4517 |
Back to bug 2188396