** Changed in: linux-armadaxp (Ubuntu Precise)
Status: New => Fix Released
** Changed in: linux-ec2 (Ubuntu Lucid)
Status: New => Invalid
** Changed in: linux-lts-quantal (Ubuntu Precise)
Status: New => Fix Committed
** Changed in: linux-lts-saucy (Ubuntu Precise)
Status: New => Fix Committed
** Changed in: linux (Ubuntu Precise)
Status: New => Fix Committed
** Changed in: linux (Ubuntu Saucy)
Status: New => Fix Committed
** Changed in: linux (Ubuntu Trusty)
Status: New => Fix Committed
** Changed in: linux (Ubuntu Lucid)
Status: New => Invalid
** Changed in: linux (Ubuntu Utopic)
Status: New => Invalid
** Changed in: linux-ti-omap4 (Ubuntu Precise)
Status: New => Fix Committed
** Description changed:
- The ioctl media_enum_entities() discloses 200 bytes of the kernel
- process stack.
+ The media_device_enum_entities function in drivers/media/media-device.c
+ in the Linux kernel before 3.14.6 does not initialize a certain data
+ structure, which allows local users to obtain sensitive information from
+ kernel memory by leveraging /dev/media0 read access for a
+ MEDIA_IOC_ENUM_ENTITIES ioctl call.
Break-Fix: 1651333b09743887bc2dd3d158a11853a2be3fe7
e6a623460e5fc960ac3ee9f946d3106233fd28d8
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1333609
Title:
CVE-2014-1739
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1333609/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
