| Revision Date: | 2014-02-02 | Version: | 1 | | Title: | CVE-2013-4738 on Ubuntu 18.10 (cosmic) - high. | | Description: | Multiple stack-based buffer overflows in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to gain privileges via (1) a crafted VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/vpe/msm_vpe.c, or (2) a crafted VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2013-4738
| | Platform(s): | Ubuntu 18.10
| Product(s): | | | Definition Synopsis | | Ubuntu 18.10 (cosmic) is installed. AND Package Information
NOT linux-image-4.18.0-21-generic package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-21-generic-lpae package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-21-lowlatency package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-21-snapdragon package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-unsigned-4.18.0-21-generic package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-unsigned-4.18.0-21-lowlatency package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-1017-aws package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-unsigned-4.18.0-1018-azure package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-unsigned-4.18.0-1012-gcp package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-1013-kvm package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-extra-virtual package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-generic package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-generic-lpae package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-lowlatency package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-snapdragon package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-virtual package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-aws package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-azure package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-gcp package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-gke package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-kvm package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-oem package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-raspi2 package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-unsigned-4.15.0-1038-oem package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-1015-raspi2 package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-21-generic package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-21-lowlatency package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-1019-azure package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.18.0-1012-gcp package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
OR NOT linux-image-4.15.0-1039-oem package in cosmic, while related to the CVE in some way, is not affected (note: 'Android only').
|
|