oss-sec mailing list archives

Re: Re: CVE-2016-5400 - linux kernel: denial of service in airspy USB driver.

From: Greg KH <greg () kroah com>
Date: Wed, 27 Jul 2016 16:27:58 -0700

On Wed, Jul 27, 2016 at 11:31:03PM +0100, Luis Henriques wrote:

Wade Mealing <wmealing () redhat com> writes:

Hit send too early,


Upstream patch:
https://git.linuxtv.org/media_tree.git/commit/?id=eca2d34b9d2ce70165a50510659838e28ca22742


I believe the above commit isn't really related with CVE-2016-5400;
the following commit in mainline claims to fix this issue:

commit aa93d1fee85c890a34f2510a310e55ee76a27848
Author: James Patrick-Evans <james () jmp-e com>
Date:   Fri Jul 15 16:40:45 2016 +0100

    media: fix airspy usb probe error path


Ah, thanks, that will show up in the next round of stable kernel
updates.

greg k-h

Current thread:

CVE-2016-5400 - linux kernel: denial of service in airspy USB driver. Wade Mealing (Jul 24)
- Re: CVE-2016-5400 - linux kernel: denial of service in airspy USB driver. Wade Mealing (Jul 24)
  - Re: Re: CVE-2016-5400 - linux kernel: denial of service in airspy USB driver. Greg KH (Jul 24)
    - Re: Re: CVE-2016-5400 - linux kernel: denial of service in airspy USB driver. Wade Mealing (Jul 24)
  - Re: Re: CVE-2016-5400 - linux kernel: denial of service in airspy USB driver. Luis Henriques (Jul 27)
    - Re: Re: CVE-2016-5400 - linux kernel: denial of service in airspy USB driver. Greg KH (Jul 27)