Home > Vulnerability Database > CVE-2016-4578

Mend.io Vulnerability Database

CVE-2016-4578

Date: May 23, 2016

sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions.

Language: C

Severity Score

5.5

Related Resources (36)

Url: https://www.exploit-db.com/exploits/46529/

Url: https://nvd.nist.gov/vuln/detail/CVE-2016-4578

Url: http://www.debian.org/security/2016/dsa-3607

Url: https://github.com/torvalds/linux/commit/9a47e9cff994f37f7f0dbd9ae23740d0f64f9fe6

Url: http://rhn.redhat.com/errata/RHSA-2016-2584.html

Url: https://access.redhat.com/security/cve/CVE-2016-4578

Url: http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

Url: https://bugzilla.redhat.com/show_bug.cgi?id=1335215

Url: http://www.openwall.com/lists/oss-security/2016/05/11/5

Url: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e4ec8cc8039a7063e24204299b462bd1383184a5

Url: http://www.securityfocus.com/bid/90535

Url: http://www.ubuntu.com/usn/USN-3020-1

Url: http://www.ubuntu.com/usn/USN-3021-1

Url: http://www.ubuntu.com/usn/USN-3021-2

Url: http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

Url: http://www.ubuntu.com/usn/USN-3017-1

Url: http://www.ubuntu.com/usn/USN-3016-2

Url: http://www.ubuntu.com/usn/USN-3016-1

Url: https://github.com/torvalds/linux/commit/e4ec8cc8039a7063e24204299b462bd1383184a5

Url: http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html

Url: http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

Url: https://security-tracker.debian.org/tracker/CVE-2016-4578

Url: http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Url: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9a47e9cff994f37f7f0dbd9ae23740d0f64f9fe6

Url: http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html

Url: http://rhn.redhat.com/errata/RHSA-2016-2574.html

Url: http://www.ubuntu.com/usn/USN-3017-3

Url: http://www.ubuntu.com/usn/USN-3018-2

Url: http://www.ubuntu.com/usn/USN-3019-1

Url: http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html

Url: http://www.ubuntu.com/usn/USN-3016-4

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2016-4578

Url: http://www.ubuntu.com/usn/USN-3017-2

Url: http://www.ubuntu.com/usn/USN-3018-1

Url: http://www.ubuntu.com/usn/USN-3016-3

Url: https://www.mend.io/vulnerability-database/CVE-2016-4578

Severity Score

5.5

Weakness Type (CWE)

Exposure of Sensitive Information to an Unauthorized Actor

CWE-200

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2016-4578

Date: May 23, 2016

Language: C

Severity Score

Related Resources (36)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?