2013-10-25 21:33:52 |
John Johansen |
bug |
|
|
added bug |
2013-10-25 21:33:54 |
John Johansen |
tags |
|
kernel-cve-tracking-bug |
|
2013-10-25 21:33:55 |
John Johansen |
information type |
Public |
Public Security |
|
2013-10-25 21:33:56 |
John Johansen |
cve linked |
|
2013-4738 |
|
2013-10-25 21:34:10 |
John Johansen |
nominated for series |
|
Ubuntu Trusty |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux (Ubuntu Trusty) |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Trusty) |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Trusty) |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Trusty) |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Trusty) |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Trusty) |
|
2013-10-25 21:34:11 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Trusty) |
|
2013-10-25 21:34:14 |
John Johansen |
nominated for series |
|
Ubuntu Saucy |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux (Ubuntu Saucy) |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Saucy) |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Saucy) |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Saucy) |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Saucy) |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Saucy) |
|
2013-10-25 21:34:15 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Saucy) |
|
2013-10-25 21:34:17 |
John Johansen |
nominated for series |
|
Ubuntu Raring |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux (Ubuntu Raring) |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Raring) |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Raring) |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Raring) |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Raring) |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Raring) |
|
2013-10-25 21:34:18 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Raring) |
|
2013-10-25 21:34:20 |
John Johansen |
nominated for series |
|
Ubuntu Quantal |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux (Ubuntu Quantal) |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Quantal) |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Quantal) |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Quantal) |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Quantal) |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Quantal) |
|
2013-10-25 21:34:22 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Quantal) |
|
2013-10-25 21:34:25 |
John Johansen |
nominated for series |
|
Ubuntu Precise |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux (Ubuntu Precise) |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Precise) |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Precise) |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Precise) |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Precise) |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Precise) |
|
2013-10-25 21:34:26 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Precise) |
|
2013-10-25 21:34:30 |
John Johansen |
nominated for series |
|
Ubuntu Lucid |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux (Ubuntu Lucid) |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Lucid) |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Lucid) |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Lucid) |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Lucid) |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Lucid) |
|
2013-10-25 21:34:31 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Lucid) |
|
2013-10-25 21:34:42 |
John Johansen |
linux-armadaxp (Ubuntu Saucy): status |
New |
Invalid |
|
2013-10-25 21:34:46 |
John Johansen |
linux-armadaxp (Ubuntu Lucid): status |
New |
Invalid |
|
2013-10-25 21:34:48 |
John Johansen |
linux-armadaxp (Ubuntu Trusty): status |
New |
Invalid |
|
2013-10-25 21:34:52 |
John Johansen |
linux-armadaxp (Ubuntu Raring): status |
New |
Invalid |
|
2013-10-25 21:34:56 |
John Johansen |
linux-ec2 (Ubuntu Precise): status |
New |
Invalid |
|
2013-10-25 21:35:01 |
John Johansen |
linux-ec2 (Ubuntu Saucy): status |
New |
Invalid |
|
2013-10-25 21:35:04 |
John Johansen |
linux-ec2 (Ubuntu Trusty): status |
New |
Invalid |
|
2013-10-25 21:35:07 |
John Johansen |
linux-ec2 (Ubuntu Quantal): status |
New |
Invalid |
|
2013-10-25 21:35:11 |
John Johansen |
linux-ec2 (Ubuntu Raring): status |
New |
Invalid |
|
2013-10-25 21:35:15 |
John Johansen |
linux-lts-quantal (Ubuntu Saucy): status |
New |
Invalid |
|
2013-10-25 21:35:18 |
John Johansen |
linux-lts-quantal (Ubuntu Lucid): status |
New |
Invalid |
|
2013-10-25 21:35:22 |
John Johansen |
linux-lts-quantal (Ubuntu Trusty): status |
New |
Invalid |
|
2013-10-25 21:35:25 |
John Johansen |
linux-lts-quantal (Ubuntu Quantal): status |
New |
Invalid |
|
2013-10-25 21:35:28 |
John Johansen |
linux-lts-quantal (Ubuntu Raring): status |
New |
Invalid |
|
2013-10-25 21:35:30 |
John Johansen |
linux-mvl-dove (Ubuntu Precise): status |
New |
Invalid |
|
2013-10-25 21:35:34 |
John Johansen |
linux-mvl-dove (Ubuntu Saucy): status |
New |
Invalid |
|
2013-10-25 21:35:37 |
John Johansen |
linux-mvl-dove (Ubuntu Trusty): status |
New |
Invalid |
|
2013-10-25 21:35:40 |
John Johansen |
linux-mvl-dove (Ubuntu Quantal): status |
New |
Invalid |
|
2013-10-25 21:35:43 |
John Johansen |
linux-mvl-dove (Ubuntu Raring): status |
New |
Invalid |
|
2013-10-25 21:35:46 |
John Johansen |
linux-ti-omap4 (Ubuntu Lucid): status |
New |
Invalid |
|
2013-10-25 21:35:50 |
John Johansen |
linux-fsl-imx51 (Ubuntu Precise): status |
New |
Invalid |
|
2013-10-25 21:35:53 |
John Johansen |
linux-fsl-imx51 (Ubuntu Saucy): status |
New |
Invalid |
|
2013-10-25 21:35:56 |
John Johansen |
linux-fsl-imx51 (Ubuntu Trusty): status |
New |
Invalid |
|
2013-10-25 21:36:00 |
John Johansen |
linux-fsl-imx51 (Ubuntu Quantal): status |
New |
Invalid |
|
2013-10-25 21:36:03 |
John Johansen |
linux-fsl-imx51 (Ubuntu Raring): status |
New |
Invalid |
|
2013-10-25 21:36:06 |
John Johansen |
linux-lts-raring (Ubuntu Saucy): status |
New |
Invalid |
|
2013-10-25 21:36:09 |
John Johansen |
linux-lts-raring (Ubuntu Lucid): status |
New |
Invalid |
|
2013-10-25 21:36:13 |
John Johansen |
linux-lts-raring (Ubuntu Trusty): status |
New |
Invalid |
|
2013-10-25 21:36:17 |
John Johansen |
linux-lts-raring (Ubuntu Quantal): status |
New |
Invalid |
|
2013-10-25 21:36:21 |
John Johansen |
linux-lts-raring (Ubuntu Raring): status |
New |
Invalid |
|
2013-10-25 21:36:24 |
John Johansen |
description |
Placeholder |
The camera post processing engine (CPP) and video processing engine (VPE) provide an ioctl system call interface to user space clients for communication. When processing arguments passed to the VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO or VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl subdev handlers, a user space supplied length value is used to copy memory to a local stack buffer without proper bounds checking. An application with access to the respective device nodes can use this flaw to, e.g., elevate privileges.
Break-Fix: - c9c81836ee44db9974007d34cf2aaeb1a51a8d45
Break-Fix: - 28385b9c3054c91dca1aa194ffa750550c50f3ce |
|
2013-10-25 21:36:27 |
John Johansen |
linux-armadaxp (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:36:30 |
John Johansen |
linux-armadaxp (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:36:32 |
John Johansen |
linux-armadaxp (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:36:36 |
John Johansen |
linux-armadaxp (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:36:38 |
John Johansen |
linux-armadaxp (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:36:41 |
John Johansen |
linux-armadaxp (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:36:44 |
John Johansen |
linux-ec2 (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:36:46 |
John Johansen |
linux-ec2 (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:36:48 |
John Johansen |
linux-ec2 (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:36:51 |
John Johansen |
linux-ec2 (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:36:53 |
John Johansen |
linux-ec2 (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:36:56 |
John Johansen |
linux-ec2 (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:36:59 |
John Johansen |
linux-lts-quantal (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:37:02 |
John Johansen |
linux-lts-quantal (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:37:05 |
John Johansen |
linux-lts-quantal (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:37:08 |
John Johansen |
linux-lts-quantal (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:37:11 |
John Johansen |
linux-lts-quantal (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:37:14 |
John Johansen |
linux-lts-quantal (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:37:17 |
John Johansen |
linux-mvl-dove (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:37:20 |
John Johansen |
linux-mvl-dove (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:37:24 |
John Johansen |
linux-mvl-dove (Ubuntu Lucid): status |
New |
Invalid |
|
2013-10-25 21:37:26 |
John Johansen |
linux-mvl-dove (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:37:30 |
John Johansen |
linux-mvl-dove (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:37:32 |
John Johansen |
linux-mvl-dove (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:37:34 |
John Johansen |
linux-mvl-dove (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:37:37 |
John Johansen |
linux (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:37:39 |
John Johansen |
linux (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:37:42 |
John Johansen |
linux (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:37:45 |
John Johansen |
linux (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:37:48 |
John Johansen |
linux (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:37:52 |
John Johansen |
linux (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:37:54 |
John Johansen |
linux-ti-omap4 (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:37:57 |
John Johansen |
linux-ti-omap4 (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:37:59 |
John Johansen |
linux-ti-omap4 (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:38:03 |
John Johansen |
linux-ti-omap4 (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:38:05 |
John Johansen |
linux-ti-omap4 (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:38:07 |
John Johansen |
linux-ti-omap4 (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:38:09 |
John Johansen |
linux-fsl-imx51 (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:38:12 |
John Johansen |
linux-fsl-imx51 (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:38:16 |
John Johansen |
linux-fsl-imx51 (Ubuntu Lucid): status |
New |
Invalid |
|
2013-10-25 21:38:19 |
John Johansen |
linux-fsl-imx51 (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:38:24 |
John Johansen |
linux-fsl-imx51 (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:38:27 |
John Johansen |
linux-fsl-imx51 (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:38:30 |
John Johansen |
linux-fsl-imx51 (Ubuntu Raring): importance |
Undecided |
High |
|
2013-10-25 21:38:32 |
John Johansen |
linux-lts-raring (Ubuntu Precise): importance |
Undecided |
High |
|
2013-10-25 21:38:35 |
John Johansen |
linux-lts-raring (Ubuntu Saucy): importance |
Undecided |
High |
|
2013-10-25 21:38:39 |
John Johansen |
linux-lts-raring (Ubuntu Lucid): importance |
Undecided |
High |
|
2013-10-25 21:38:43 |
John Johansen |
linux-lts-raring (Ubuntu Trusty): importance |
Undecided |
High |
|
2013-10-25 21:38:47 |
John Johansen |
linux-lts-raring (Ubuntu Quantal): importance |
Undecided |
High |
|
2013-10-25 21:38:49 |
John Johansen |
linux-lts-raring (Ubuntu Raring): importance |
Undecided |
High |
|
2013-11-12 17:31:45 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Lucid): status |
New |
Won't Fix |
|
2013-11-12 17:31:56 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Precise): status |
New |
Won't Fix |
|
2013-11-12 17:32:06 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Trusty): status |
New |
Won't Fix |
|
2013-11-12 18:47:48 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Lucid): status |
New |
Won't Fix |
|
2013-11-12 18:47:58 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Precise): status |
New |
Won't Fix |
|
2013-11-12 18:48:07 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Quantal): status |
New |
Won't Fix |
|
2013-11-12 18:48:18 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Raring): status |
New |
Won't Fix |
|
2013-11-12 18:48:27 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Saucy): status |
New |
Won't Fix |
|
2013-11-12 18:48:36 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Trusty): status |
New |
Won't Fix |
|
2013-11-12 19:55:06 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Quantal): status |
New |
Won't Fix |
|
2013-11-12 19:55:15 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Raring): status |
New |
Won't Fix |
|
2013-11-12 19:55:24 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Saucy): status |
New |
Won't Fix |
|
2013-11-12 21:31:19 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu): status |
New |
Won't Fix |
|
2013-11-12 21:31:31 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu): status |
New |
Won't Fix |
|
2014-04-17 19:09:28 |
Jamie Strandboge |
linux-lts-raring (Ubuntu Precise): status |
New |
Won't Fix |
|
2014-04-17 19:09:38 |
Jamie Strandboge |
linux (Ubuntu Raring): status |
New |
Won't Fix |
|
2014-04-17 19:09:47 |
Jamie Strandboge |
linux-ti-omap4 (Ubuntu Raring): status |
New |
Won't Fix |
|
2014-06-26 23:06:16 |
Jamie Strandboge |
linux (Ubuntu Quantal): status |
New |
Won't Fix |
|
2014-06-26 23:06:24 |
Jamie Strandboge |
linux-armadaxp (Ubuntu Quantal): status |
New |
Won't Fix |
|
2014-06-26 23:06:33 |
Jamie Strandboge |
linux-ti-omap4 (Ubuntu Quantal): status |
New |
Won't Fix |
|
2014-09-15 19:59:23 |
Joseph Salisbury |
linux (Ubuntu Saucy): status |
New |
Won't Fix |
|
2014-12-05 06:33:50 |
Rolf Leggewie |
linux-ti-omap4 (Ubuntu Saucy): status |
New |
Won't Fix |
|
2015-03-25 05:24:44 |
Mathew Hodson |
linux (Ubuntu): status |
New |
Invalid |
|
2015-03-25 05:27:26 |
Mathew Hodson |
linux-lts-quantal (Ubuntu Precise): status |
New |
Invalid |
|
2015-03-25 05:27:53 |
Mathew Hodson |
linux-ti-omap4 (Ubuntu): status |
New |
Invalid |
|
2015-03-25 05:28:25 |
Mathew Hodson |
linux-ti-omap4 (Ubuntu Trusty): status |
New |
Invalid |
|
2015-03-25 05:30:30 |
Mathew Hodson |
linux (Ubuntu Trusty): status |
New |
Invalid |
|
2015-04-06 03:01:04 |
Mathew Hodson |
description |
The camera post processing engine (CPP) and video processing engine (VPE) provide an ioctl system call interface to user space clients for communication. When processing arguments passed to the VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO or VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl subdev handlers, a user space supplied length value is used to copy memory to a local stack buffer without proper bounds checking. An application with access to the respective device nodes can use this flaw to, e.g., elevate privileges.
Break-Fix: - c9c81836ee44db9974007d34cf2aaeb1a51a8d45
Break-Fix: - 28385b9c3054c91dca1aa194ffa750550c50f3ce |
Multiple stack-based buffer overflows in the MSM camera driver for the
Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android
contributions for MSM devices and other products, allow attackers to gain
privileges via (1) a crafted VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl
call, related to drivers/media/platform/msm/camera_v2/pproc/vpe/msm_vpe.c,
or (2) a crafted VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO ioctl call,
related to drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c.
Break-Fix: - c9c81836ee44db9974007d34cf2aaeb1a51a8d45
Break-Fix: - 28385b9c3054c91dca1aa194ffa750550c50f3ce |
|
2015-05-11 07:55:29 |
Mathew Hodson |
linux-armadaxp (Ubuntu Precise): status |
New |
Invalid |
|
2015-05-11 07:55:49 |
Mathew Hodson |
linux-ec2 (Ubuntu Lucid): status |
New |
Invalid |
|
2015-05-11 07:56:18 |
Mathew Hodson |
linux (Ubuntu Lucid): status |
New |
Invalid |
|
2015-05-11 07:56:33 |
Mathew Hodson |
linux (Ubuntu Precise): status |
New |
Invalid |
|
2015-05-11 07:56:59 |
Mathew Hodson |
linux-ti-omap4 (Ubuntu Precise): status |
New |
Invalid |
|