Oval Definition:	oval:com.ubuntu.xenial:def:20144322000
Revision Date: 2014-12-24 Version: 1 Title: CVE-2014-4322 on Ubuntu 16.04 LTS (xenial) - medium. Description: drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain offset, length, and base values within an ioctl call, which allows attackers to gain privileges or cause a denial of service (memory corruption) via a crafted application. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-4322 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information NOT While related to the CVE in some way, the 'linux' package in xenial is not affected (note: 'Android-specific'). OR NOT While related to the CVE in some way, the 'linux-aws' package in xenial is not affected. OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR NOT While related to the CVE in some way, the 'linux-gke' package in xenial is not affected. OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR NOT While related to the CVE in some way, the 'linux-hwe' package in xenial is not affected. OR NOT While related to the CVE in some way, the 'linux-hwe-edge' package in xenial is not affected. OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR NOT While related to the CVE in some way, the 'linux-raspi2' package in xenial is not affected. OR NOT While related to the CVE in some way, the 'linux-snapdragon' package in xenial is not affected.
BACK