Some linked lists (active_list and ack_list) of slave instances aren't unlinked immediately at stopping or closing, and this may lead to unexpected accesses. Upstream patch: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b5a663aa426f4884c71cd8580adae73f33570f0d External references: http://seclists.org/oss-sec/2016/q1/133
This is an identical fix to bug 1311566 This was fixed in 4.3.5 with: commit ea7f3d59628930dc29482a292e2a55c81cac52a4 Author: Takashi Iwai <tiwai> Date: Thu Jan 14 16:30:58 2016 +0100 ALSA: timer: Harden slave timer list handling commit b5a663aa426f4884c71cd8580adae73f33570f0d upstream. and in 4.4.1 with: commit 8eff3aa0a9bbb593dce0ec0344ec1961318e44c8 Author: Takashi Iwai <tiwai> Date: Thu Jan 14 16:30:58 2016 +0100 ALSA: timer: Harden slave timer list handling commit b5a663aa426f4884c71cd8580adae73f33570f0d upstream. All Fedora branches are on those or newer. This issue is fixed in Fedora.
*** This bug has been marked as a duplicate of bug 1311566 ***
Statement: This flaw was found to be a duplicate of CVE-2016-2547. Please see https://access.redhat.com/security/cve/CVE-2016-2547 for information about affected products and security errata.