We have moved to a new Sailfish OS Forum. Please start new discussions there.

Revision history [back]

click to hide/show revision 1
initial version

posted 2017-05-03 12:55:26 +0200

lpr gravatar image

fix use-after-free in seq file in kernel-block CVE-2016-7910

Description

Use-after-free vulnerability in the disk_seqf_stop function in block/genhd.c in the Linux kernel before 4.7.1 allows local users to gain privileges by leveraging the execution of a certain stop operation even if the corresponding start operation had failed. CVSSv3 7.8 high (attack range: remote)

Patch is available.

File affected: kernel-adaptation-sbj-3.4.108.20161101.1/block/genhd.c lines 828-832

Copyright © Jolla Ltd. 2013-2019. All rights reserved.
about | faq | help | privacy policy | terms of service | give feedback
Powered by Askbot version 0.7.49