sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of a read/write lock, which allows local users to cause a denial of service (use-after-free) and obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX access.
References
Configurations
History
07 Nov 2023, 02:20
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2014-07-03 04:22
Updated : 2023-12-10 11:31
NVD link : CVE-2014-4653
Mitre link : CVE-2014-4653
CVE.ORG link : CVE-2014-4653
JSON object : View
Products Affected
canonical
- ubuntu_linux
linux
- linux_kernel
suse
- linux_enterprise_server
CWE
CWE-416
Use After Free