retired/CVE-2013-2888


1
2
3
4
5
6
7
8
9
10
11
12
13

Description: HID arbitrary heap write
References:
 http://marc.info/?l=linux-input&m=137772180514608&w=1
Notes:
 in addion Kees recommends the followin defensive patch:
 http://marc.info/?t=137772196600012&r=1&w=1
Bugs:
upstream: released (3.12-rc1) [43622021d2e2b82ea03d883926605bdd0525e1d1, be67b68d52fa28b9b721c47bb42068f0c1214855]
2.6.32-upstream-stable: released (2.6.32.62)
sid: released (3.10.11-1)
3.2-wheezy-security: released (3.2.51-1)
2.6.32-squeeze-security: released (2.6.32-48squeeze4) [bugfix/all/hid-check-for-null-when-setting-values.patch, bugfix/all/hid-validate-report-id-size.patch]
3.2-upstream-stable: released (3.2.52)