CVE-2016-4569

LOW

Description

The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface.

ID	Name	Product	Family	Severity
99163	OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0057) (Dirty COW)	Nessus	OracleVM Local Security Checks	critical
96903	SUSE SLES11 Security Update : kernel (SUSE-SU-2017:0333-1)	Nessus	SuSE Local Security Checks	critical
96073	OracleVM 3.2 : Unbreakable / etc (OVMSA-2016-0181)	Nessus	OracleVM Local Security Checks	critical
95841	Scientific Linux Security Update : kernel on SL7.x x86_64	Nessus	Scientific Linux Local Security Checks	critical
95366	OracleVM 3.2 : Unbreakable / etc (OVMSA-2016-0167)	Nessus	OracleVM Local Security Checks	high
95321	CentOS 7 : kernel (CESA-2016:2574)	Nessus	CentOS Local Security Checks	critical
95046	OracleVM 3.3 : Unbreakable / etc (OVMSA-2016-0163)	Nessus	OracleVM Local Security Checks	medium
95045	OracleVM 3.4 : Unbreakable / etc (OVMSA-2016-0162)	Nessus	OracleVM Local Security Checks	high
95044	Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3646)	Nessus	Oracle Linux Local Security Checks	high
95043	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3645)	Nessus	Oracle Linux Local Security Checks	medium
95042	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3644)	Nessus	Oracle Linux Local Security Checks	high
94697	Oracle Linux 7 : kernel (ELSA-2016-2574)	Nessus	Oracle Linux Local Security Checks	critical
94547	RHEL 7 : kernel-rt (RHSA-2016:2584)	Nessus	Red Hat Local Security Checks	critical
94537	RHEL 7 : kernel (RHSA-2016:2574)	Nessus	Red Hat Local Security Checks	critical
93445	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1076)	Nessus	SuSE Local Security Checks	critical
93370	SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2245-1)	Nessus	SuSE Local Security Checks	critical
93299	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:2105-1)	Nessus	SuSE Local Security Checks	high
93216	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1029)	Nessus	SuSE Local Security Checks	high
93168	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:1696-1)	Nessus	SuSE Local Security Checks	high
93165	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:1690-1)	Nessus	SuSE Local Security Checks	high
93164	SUSE SLES11 Security Update : kernel (SUSE-SU-2016:1672-1)	Nessus	SuSE Local Security Checks	high
93104	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1015)	Nessus	SuSE Local Security Checks	critical
92195	Fedora 24 : kernel (2016-ef973efab7)	Nessus	Fedora Local Security Checks	high
92123	Fedora 22 : kernel (2016-84fdc82b74)	Nessus	Fedora Local Security Checks	high
92055	Fedora 23 : kernel (2016-06f1572324)	Nessus	Fedora Local Security Checks	high
92007	openSUSE Security Update : the Linux Kernel (openSUSE-2016-862)	Nessus	SuSE Local Security Checks	high
91886	Debian DSA-3607-1 : linux - security update	Nessus	Debian Local Security Checks	critical
91884	Ubuntu 12.04 LTS : linux vulnerabilities (USN-3021-1)	Nessus	Ubuntu Local Security Checks	high
91883	Ubuntu 14.04 LTS : linux-lts-vivid vulnerabilities (USN-3020-1)	Nessus	Ubuntu Local Security Checks	high
91882	Ubuntu 14.04 LTS : linux-lts-utopic vulnerabilities (USN-3019-1)	Nessus	Ubuntu Local Security Checks	high
91881	Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-3018-2)	Nessus	Ubuntu Local Security Checks	high
91880	Ubuntu 14.04 LTS : linux vulnerabilities (USN-3018-1)	Nessus	Ubuntu Local Security Checks	high
91879	Ubuntu 14.04 LTS : linux-lts-wily vulnerabilities (USN-3017-3)	Nessus	Ubuntu Local Security Checks	high
91878	Ubuntu 15.10 : linux-raspi2 vulnerabilities (USN-3017-2)	Nessus	Ubuntu Local Security Checks	high
91877	Ubuntu 15.10 : linux vulnerabilities (USN-3017-1)	Nessus	Ubuntu Local Security Checks	high
91876	Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3016-4)	Nessus	Ubuntu Local Security Checks	high
91875	Ubuntu 16.04 LTS : linux-snapdragon vulnerabilities (USN-3016-3)	Nessus	Ubuntu Local Security Checks	high
91874	Ubuntu 16.04 LTS : linux-raspi2 vulnerabilities (USN-3016-2)	Nessus	Ubuntu Local Security Checks	high
91873	Ubuntu 16.04 LTS : linux vulnerabilities (USN-3016-1)	Nessus	Ubuntu Local Security Checks	high
91736	openSUSE Security Update : the Linux Kernel (openSUSE-2016-753)	Nessus	SuSE Local Security Checks	critical
91687	Debian DLA-516-1 : linux security update	Nessus	Debian Local Security Checks	critical

CVE-2016-4569

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0