[security-announce] Kernel/ALSA: Security update

Sona Sarmadi sona.sarmadi at enea.com
Tue Jan 20 13:56:41 CET 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This security Advisory supersedes the previous one sent 2015-01-20

=================================================
Product/package: Kernel/ALSA: (FSL kernel: 3.8.11)
Severity: Moderate
Issue date: 2015-01-20
CVE Names: CVE-2014-4652 and CVE-2014-4652
Layer: meta-enea
=================================================
A security patch that fixes CVE-2014-4652 and CVE-2014-4653 is now
available in the "http://linux.enea.com/4.0/patches" folder.

README file: 0016-kernel-ALSA-CVE-2014-4652-CVE-2014-4653.patch
patch file: 0016-kernel-ALSA-CVE-2014-4652-CVE-2014-4653.patch

Description
===========
CVE-2014-4652
Race condition in the tlv handler functionality in the
snd_ctl_elem_user_tlv function in sound/core/control.c in the
ALSA control implementation in the Linux kernel before 3.15.2
allows local users to obtain sensitive information from kernel
memorn by leveraging /dev/snd/controlCX access.

CVE-2014-4653
sound/core/control.c in the ALSA control implementation in the
Linux kernel before 3.15.2 does not ensure possession of a
read/write lock, which allows local users to cause a denial of
service (use-after-free) and obtain sensitive information from
kernel memory by leveraging /dev/snd/controlCX access.

References
==========
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4652
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4653

How to apply the patches
=========================
If you don't have installed the Enea Linux 4.0 Release:

# wget http://linux.enea.com/4.0/Enea-Linux-4.0.tar.gz
# tar zxvf Enea-Linux-4.0.tar.gz

If you have already installed the Enea Linux 4.0 Release:

# cd Enea-Linux-4.0/poky/meta-enea
# wget
http://linux.enea.com/4.0/patches/0016-kernel-ALSA-CVE-2014-4652-CVE-2014-4653.patch
# patch -p1 < ./0016-kernel-ALSA-CVE-2014-4652-CVE-2014-4653.patch

If you have any questions regarding the security patches and security
updates please contact security at enea.com.

ESRT (Enea Security Response Team)
Sona Sarmadi
Software Engineer/Security Responsible for Enea Linux
Mobile: +46 70 971 4475
www.enea.com

This message, including attachments, is CONFIDENTIAL. It may also be
privileged or otherwise protected by law. If you received this email
by mistake please let us know by reply and then delete it from your
system; you should not copy it or disclose its contents to anyone.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=Rqd+
-----END PGP SIGNATURE-----



More information about the security-announce mailing list