Vulnerability Name: | CVE-2016-10907 (CCN-169642) | ||||||||||||||||
Assigned: | 2016-07-25 | ||||||||||||||||
Published: | 2016-07-25 | ||||||||||||||||
Updated: | 2019-10-07 | ||||||||||||||||
Summary: | An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt. | ||||||||||||||||
CVSS v3 Severity: | 7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) 6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
| ||||||||||||||||
CVSS v2 Severity: | 4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||||||||||
Vulnerability Type: | CWE-787 | ||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||
References: | Source: MITRE Type: CNA CVE-2016-10907 Source: CCN Type: The Linux Kernel Archives Web site The Linux Kernel Archives Source: MISC Type: Release Notes, Vendor Advisory https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.6 Source: XF Type: UNKNOWN linux-kernel-cve201610907-bo(169642) Source: MISC Type: Patch, Vendor Advisory https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=9d47964bfd471f0dd4c89f28556aec68bffa0020 Source: CCN Type: Linux GitHub repository iio: ad5755: fix off-by-one on devnr limit check Source: CONFIRM Type: UNKNOWN https://support.f5.com/csp/article/K79609038 Source: CONFIRM Type: UNKNOWN https://support.f5.com/csp/article/K79609038?utm_source=f5support&utm_medium=RSS | ||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||||||
Oval Definitions | |||||||||||||||||
| |||||||||||||||||
BACK |