** Changed in: linux-snapdragon (Ubuntu Precise)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Precise)
Importance: Undecided => High
** Changed in: linux-snapdragon (Ubuntu Wily)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Wily)
Importance: Undecided => High
** Changed in: linux-snapdragon (Ubuntu Xenial)
Importance: Undecided => High
** Changed in: linux-snapdragon (Ubuntu Yakkety)
Importance: Undecided => High
** Changed in: linux-snapdragon (Ubuntu Trusty)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Trusty)
Importance: Undecided => High
** Description changed:
- memory disclosure to ethernet due to unchecked scatter/gather IO
+ The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in
+ the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O,
+ which allows remote attackers to obtain sensitive information from
+ kernel memory by reading packet data.
Break-Fix: ec5f061564238892005257c83565a0b58ec79295
f43bfaeddc79effbf3d0fcb53ca477cca66f3db8
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1561403
Title:
CVE-2016-2117
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1561403/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
