Описание
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while querying event status via DCI.
Отчет
This issue is a duplicate of CVE-2016-7117; refer to that CVE for details. It has already been fixed in all supported Red Hat products.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | kernel | Not affected | ||
| Red Hat Enterprise Linux 6 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel-alt | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Not affected | ||
| Red Hat Enterprise MRG 2 | realtime-kernel | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Important
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=1489092kernel: use after free in the recvmmsg exit path
8.1 High
CVSS3
Связанные уязвимости
CVSS3: 4.7
nvd
больше 8 лет назад
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while querying event status via DCI.
CVSS3: 4.7
github
больше 3 лет назад
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while querying event status via DCI.
8.1 High
CVSS3