Bug 1141344 (CVE-2014-3183) - CVE-2014-3183 Kernel: HID: heap overflow due to lack of bounds checking
Summary: CVE-2014-3183 Kernel: HID: heap overflow due to lack of bounds checking
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: CVE-2014-3183
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1141347
Blocks: 1140968
TreeView+ depends on / blocked
 
Reported: 2014-09-12 18:13 UTC by Prasad Pandit
Modified: 2021-02-17 06:13 UTC (History)
29 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-02-10 07:58:06 UTC
Embargoed:

Attachments (Terms of Use)

Description Prasad Pandit 2014-09-12 18:13:40 UTC 
Linux kernel built with the Human Interface Device(HID) Bus support(CONFIG_HID)
along with a driver for Logitech Unifying receivers full support
(CONFIG_LOGITECH_DJ), is vulnerable to an OOB write flaw. It could occur if a
device offers an HID report of arbitrary count value.

A local user with physical access to the system could use this flaw to crash
the system resulting in DoS or potentially, escalate their privileges on the
system.

Upstream fix:
-------------
  -> https://git.kernel.org/linus/51217e69697fba92a06e07e16f55c9a52d8e8945
Comment 1 Prasad Pandit 2014-09-12 18:17:36 UTC 
Statement:

This issue does not affect the versions of the kernel package as shipped with
Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2.
Comment 2 Prasad Pandit 2014-09-12 18:18:23 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1141347]
Note You need to log in before you can comment on or make changes to this bug.