CVE-2014-4656
Published: 03 July 2014
Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX access, related to (1) index values in the snd_ctl_add function and (2) numid values in the snd_ctl_remove_numid_conflict function.
From the Ubuntu security team
An integer overflow flaw was discovered in the control implementation of the Advanced Linux Sound Architecture (ALSA). A local user could exploit this flaw to cause a denial of service (system crash).
Priority
Medium
Status
| Package | Release | Status |
|---|---|---|
|
linux Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 Fixed by ac902c112d90a89e59916f751c2745f4dbdbb4bd Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 Fixed by 883a1d49f0d77d30012f114b2e19fc141beb3e8e |
||
|
linux-2.6 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-armadaxp Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
| This package is not directly supported by the Ubuntu Security Team | ||
|
linux-aws Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-ec2 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-flo Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-fsl-imx51 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-gke Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-goldfish Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-grouper Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-hwe Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-hwe-edge Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-linaro-omap Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-linaro-shared Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-linaro-vexpress Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-lts-quantal Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
| This package is not directly supported by the Ubuntu Security Team | ||
|
linux-lts-raring Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-lts-saucy Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
| This package is not directly supported by the Ubuntu Security Team | ||
|
linux-lts-trusty Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-lts-utopic Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-lts-vivid Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-lts-wily Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-lts-xenial Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-maguro Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-mako Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-manta Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-mvl-dove Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-qcm-msm Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-raspi2 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-snapdragon Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
|
linux-ti-omap4 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc2)
|
Notes
| Author | Note |
|---|---|
| jdstrand | android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.04 preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4656
- https://github.com/torvalds/linux/commit/ac902c112d90a89e59916f751c2745f4dbdbb4bd
- https://github.com/torvalds/linux/commit/883a1d49f0d77d30012f114b2e19fc141beb3e8e
- https://bugzilla.redhat.com/show_bug.cgi?id=1113470
- http://www.openwall.com/lists/oss-security/2014/06/26/6
- http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.2
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ac902c112d90a89e59916f751c2745f4dbdbb4bd
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=883a1d49f0d77d30012f114b2e19fc141beb3e8e
- https://ubuntu.com/security/notices/USN-2332-1
- https://ubuntu.com/security/notices/USN-2333-1
- https://ubuntu.com/security/notices/USN-2334-1
- https://ubuntu.com/security/notices/USN-2335-1
- https://ubuntu.com/security/notices/USN-2336-1
- https://ubuntu.com/security/notices/USN-2337-1
- NVD
- Launchpad
- Debian