CVE-2017-16529

Priority
Description
The snd_usb_create_streams function in sound/usb/card.c in the Linux kernel
before 4.13.6 allows local users to cause a denial of service
(out-of-bounds read and system crash) or possibly have unspecified other
impact via a crafted USB device.
Ubuntu-Description
Andrey Konovalov discovered that the ALSA subsystem in the Linux kernel did
not properly validate USB audio buffer descriptors. A physically proximate
attacker could use this cause a denial of service (system crash) or
possibly execute arbitrary code.
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.13.0-17.20)
Ubuntu 16.04 ESM:released (4.4.0-101.124)
Ubuntu 14.04 ESM:released (3.13.0-157.207)
Patches:
Introduced by
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by
bfc81a8bc18e3c4ba0cbaa7666ff76be2f998991
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.15.0-1001.1)
Ubuntu 16.04 ESM:released (4.4.0-1041.50)
Ubuntu 14.04 ESM:released (4.4.0-1003.3)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.15.0-1002.2)
Ubuntu 16.04 ESM:released (4.13.0-1005.7)
Ubuntu 14.04 ESM:not-affected (4.15.0-1023.24~14.04.1)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.18.0-1003.3~18.04.1)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [abandoned])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.15.0-1001.1)
Ubuntu 16.04 ESM:released (4.13.0-1002.5)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [abandoned])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [abandoned])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected
Ubuntu 16.04 ESM:released (4.13.0-26.29~16.04.2)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.18.0-8.9~18.04.1)
Ubuntu 16.04 ESM:released (4.13.0-26.29~16.04.2)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.15.0-1002.2)
Ubuntu 16.04 ESM:released (4.4.0-1010.15)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [out of standard support])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [was needs-triage now end-of-life])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [out of standard support])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:released (4.4.0-101.124~14.04.1)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [abandoned])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [abandoned])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE (trusty was ignored [abandoned])
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.15.0-1002.3)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected (4.13.0-1006.6)
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:not-affected
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
More Information

Updated: 2022-04-13 12:56:58 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)