[kernel-sec-discuss] r4981 - dsa-texts
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Feb 22 07:29:24 UTC 2017
Author: carnil
Date: 2017-02-22 07:29:24 +0000 (Wed, 22 Feb 2017)
New Revision: 4981
Modified:
dsa-texts/3.16.39-1+deb8u1
Log:
Add possible description for CVE-2016-8405
Modified: dsa-texts/3.16.39-1+deb8u1
===================================================================
--- dsa-texts/3.16.39-1+deb8u1 2017-02-22 07:29:23 UTC (rev 4980)
+++ dsa-texts/3.16.39-1+deb8u1 2017-02-22 07:29:24 UTC (rev 4981)
@@ -15,6 +15,12 @@
escalate his privileges.
CVE-2016-8405
+
+ Peter Pi of Trend Micro discovered that the frame buffer video
+ subsystem does not properly check bounds while copying color maps to
+ userspace, causing a heap buffer out-of-bounds read, leading to
+ information disclosure.
+
CVE-2016-9191
CVE-2017-2583
CVE-2017-2584
More information about the kernel-sec-discuss
mailing list