Oval Definition:	oval:com.ubuntu.trusty:def:20144322000
Revision Date: 2014-12-24 Version: 1 Title: CVE-2014-4322 on Ubuntu 14.04 LTS (trusty) - medium. Description: drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain offset, length, and base values within an ioctl call, which allows attackers to gain privileges or cause a denial of service (memory corruption) via a crafted application. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-4322 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information NOT While related to the CVE in some way, the 'linux' package in trusty is not affected (note: 'Android-specific'). OR NOT While related to the CVE in some way, the 'linux-aws' package in trusty is not affected. OR While related to the CVE in some way, a decision has been made to ignore it. OR While related to the CVE in some way, a decision has been made to ignore it. OR While related to the CVE in some way, a decision has been made to ignore it. OR NOT While related to the CVE in some way, the 'linux-lts-utopic' package in trusty is not affected (note: 'Android-specific'). OR NOT While related to the CVE in some way, the 'linux-lts-vivid' package in trusty is not affected. OR NOT While related to the CVE in some way, the 'linux-lts-wily' package in trusty is not affected. OR NOT While related to the CVE in some way, the 'linux-lts-xenial' package in trusty is not affected (note: 'Android-specific'). OR While related to the CVE in some way, a decision has been made to ignore it. OR While related to the CVE in some way, a decision has been made to ignore it. OR While related to the CVE in some way, a decision has been made to ignore it.
BACK