Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 578060

Summary: sys-kernel/gentoo-sources: arbitrary code execution in usb-midi driver (CVE-2016-2384)
Product: Gentoo Security Reporter: bugs-gentoo01
Component: KernelAssignee: Gentoo Kernel Security <security-kernel>
Status: RESOLVED FIXED    
Severity: major CC: kernel
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Attachments:
Description Flags
Ebuild none

Description bugs-gentoo01 2016-03-23 09:37:00 UTC 
Created attachment 428802 [details]
Ebuild

Kernel Vulnerability CVE-2016-2384 [1].
The patch [2] can be applied to to current stable gentoo-sources.
I've attached an updated version of the ebuild.

[1] https://xairy.github.io/blog/2016/cve-2016-2384
[2] https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/patch/?id=07d86ca93db7e5cdf4743564d98292042ec21af7
Comment 1 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-03-25 22:48:03 UTC 
Fix in 4.5.