retired/CVE-2016-4482


1
2
3
4
5
6
7
8
9
10
11
12
13
14

Description: information leak in devio
References:
 http://www.spinics.net/lists/linux-usb/msg140243.html
Notes:
 bwh> There may or may not be an information leak here in practice,
 bwh> depending on how the compiler optimises the structure
 bwh> initialisation.
Bugs:
upstream: released (4.7-rc1) [681fef8380eb818c0b845fca5d2ab1dcbab114ee]
3.16-upstream-stable: released (3.16.37) [usb-usbfs-fix-potential-infoleak-in-devio.patch]
3.2-upstream-stable: released (3.2.82) [usb-usbfs-fix-potential-infoleak-in-devio.patch]
sid: released (4.5.5-1) [bugfix/all/usb-usbfs-fix-potential-infoleak-in-devio.patch]
3.16-jessie-security: released (3.16.7-ckt25-2+deb8u1) [bugfix/all/usb-usbfs-fix-potential-infoleak-in-devio.patch]
3.2-wheezy-security: released (3.2.81-1) [bugfix/all/usb-usbfs-fix-potential-infoleak-in-devio.patch]