← Back to team overview

group.of.nepali.translators team mailing list archive

[Bug 1563916] Re: CVE-2016-0774

 

This bug was fixed in the package linux-ti-omap4 - 3.2.0-1480.106

---------------
linux-ti-omap4 (3.2.0-1480.106) precise; urgency=low

  [ Kamal Mostafa ]

  * Release Tracking Bug
    - LP: #1573271

  [ Ubuntu-3.2.0-102.142 ]

  * [debian] BugLink: close LP: bugs only for Launchpad urls
  * Revert "jffs2: Fix lock acquisition order bug in jffs2_write_begin"
    - LP: #1564815
  * gspca: ov534/topro: prevent a division by 0
    - LP: #1563911
  * media: dvb-core: Don't force CAN_INVERSION_AUTO in oneshot mode
    - LP: #1563911
  * rc: allow rc modules to be loaded if rc-main is not a module
    - LP: #1563911
  * SCSI: initio: remove duplicate module device table
    - LP: #1563911
  * KVM: x86: expose MSR_TSC_AUX to userspace
    - LP: #1563911
  * KVM: x86: correctly print #AC in traces
    - LP: #1563911
  * ath9k_htc: check for underflow in ath9k_htc_rx_msg()
    - LP: #1563911
  * mtd: nand: fix ONFI parameter page layout
    - LP: #1563911
  * xhci: refuse loading if nousb is used
    - LP: #1563911
  * rtlwifi: fix memory leak for USB device
    - LP: #1563911
  * wlcore: SPI - fix spi transfer_list
    - LP: #1563911
  * wlcore/wl12xx: spi: fix oops on firmware load
    - LP: #1563911
  * EDAC: Robustify workqueues destruction
    - LP: #1563911
  * powerpc: Make value-returning atomics fully ordered
    - LP: #1563911
  * powerpc: Make {cmp}xchg* and their atomic_ versions fully ordered
    - LP: #1563911
  * asix: silence log message from oversize packet
    - LP: #1563911
  * futex: Drop refcount if requeue_pi() acquired the rtmutex
    - LP: #1563911
  * ALSA: fm801: propagate TUNER_ONLY bit when autodetected
    - LP: #1563911
  * drm/radeon: clean up fujitsu quirks
    - LP: #1563911
  * udf: limit the maximum number of indirect extents in a row
    - LP: #1563911
  * USB: cp210x: add ID for ELV Marble Sound Board 1
    - LP: #1563911
  * posix-clock: Fix return code on the poll method's error path
    - LP: #1563911
  * x86/LDT: Print the real LDT base address
    - LP: #1563911
  * rtlwifi: rtl8192de: Fix incorrect module parameter descriptions
    - LP: #1563911
  * rtlwifi: rtl8192se: Fix module parameter initialization
    - LP: #1563911
  * rtlwifi: rtl8192ce: Fix handling of module parameters
    - LP: #1563911
  * rtlwifi: rtl8192cu: Add missing parameter setup
    - LP: #1563911
  * NFS: Fix attribute cache revalidation
    - LP: #1563911
  * Input: i8042 - add Fujitsu Lifebook U745 to the nomux list
    - LP: #1563911
  * x86/xen: don't reset vcpu_info on a cancelled suspend
    - LP: #1563911
  * udf: Prevent buffer overrun with multi-byte characters
    - LP: #1563911
  * udf: Check output buffer length when converting name to CS0
    - LP: #1563911
  * power: test_power: correctly handle empty writes
    - LP: #1563911
  * locks: fix unlock when fcntl_setlk races with a close
    - LP: #1563911
  * dm snapshot: fix hung bios when copy error occurs
    - LP: #1563911
  * uml: fix hostfs mknod()
    - LP: #1563911
  * uml: flush stdout before forking
    - LP: #1563911
  * ipv6: tcp: add rcu locking in tcp_v6_send_synack()
    - LP: #1563911
  * x86/mm: Add barriers and document switch_mm()-vs-flush synchronization
    - LP: #1563911
  * x86/boot: Double BOOT_HEAP_SIZE to 64KB
    - LP: #1563911
  * x86/reboot/quirks: Add iMac10,1 to pci_reboot_dmi_table[]
    - LP: #1563911
  * ALSA: seq: Fix missing NULL check at remove_events ioctl
    - LP: #1563911
  * ALSA: seq: Fix race at timer setup and close
    - LP: #1563911
  * parisc: Fix __ARCH_SI_PREAMBLE_SIZE
    - LP: #1563911
  * x86/mm: Improve switch_mm() barrier comments
    - LP: #1563911
  * ALSA: timer: Fix double unlink of active_list
    - LP: #1563911
  * ALSA: timer: Fix race among timer ioctls
    - LP: #1563911
  * sparc64: fix incorrect sign extension in sys_sparc64_personality
    - LP: #1563911
  * cifs: Ratelimit kernel log messages
    - LP: #1563911
  * cifs: fix race between call_async() and reconnect()
    - LP: #1563911
  * cifs_dbg() outputs an uninitialized buffer in cifs_readdir()
    - LP: #1563911
  * m32r: fix m32104ut_defconfig build fail
    - LP: #1563911
  * dma-debug: switch check from _text to _stext
    - LP: #1563911
  * scripts/bloat-o-meter: fix python3 syntax error
    - LP: #1563911
  * ocfs2/dlm: ignore cleaning the migration mle that is inuse
    - LP: #1563911
  * ALSA: timer: Harden slave timer list handling
    - LP: #1563911
  * memcg: only free spare array when readers are done
    - LP: #1563911
  * printk: help pr_debug and pr_devel to optimize out arguments
    - LP: #1563911
  * crypto: af_alg - Fix socket double-free when accept fails
    - LP: #1563911
  * ALSA: hrtimer: Fix stall by hrtimer_cancel()
    - LP: #1563911
  * ALSA: pcm: Fix snd_pcm_hw_params struct copy in compat mode
    - LP: #1563911
  * ALSA: seq: Fix snd_seq_call_port_info_ioctl in compat mode
    - LP: #1563911
  * ALSA: control: Avoid kernel warnings from tlv ioctl with numid 0
    - LP: #1563911
  * IB/qib: fix mcast detach when qp not attached
    - LP: #1563911
  * IB/mlx4: Initialize hop_limit when creating address handle
    - LP: #1563911
  * ocfs2: NFS hangs in __ocfs2_cluster_lock due to race with
    ocfs2_unblock_lock
    - LP: #1563911
  * crypto: algif_skcipher - Require setkey before accept(2)
    - LP: #1563911
  * crypto: af_alg - Disallow bind/setkey/... after accept(2)
    - LP: #1563911
  * crypto: af_alg - Add nokey compatibility path
    - LP: #1563911
  * crypto: algif_skcipher - Add nokey compatibility path
    - LP: #1563911
  * crypto: hash - Add crypto_ahash_has_setkey
    - LP: #1563911
  * crypto: algif_hash - Require setkey before accept(2)
    - LP: #1563911
  * crypto: skcipher - Add crypto_skcipher_has_setkey
    - LP: #1563911
  * crypto: algif_skcipher - Add key check exception for cipher_null
    - LP: #1563911
  * crypto: af_alg - Allow af_af_alg_release_parent to be called on nokey
    path
    - LP: #1563911
  * crypto: algif_hash - Remove custom release parent function
    - LP: #1563911
  * crypto: algif_skcipher - Remove custom release parent function
    - LP: #1563911
  * crypto: af_alg - Forbid bind(2) when nokey child sockets are present
    - LP: #1563911
  * crypto: algif_hash - Fix race condition in hash_check_key
    - LP: #1563911
  * crypto: algif_skcipher - Fix race condition in skcipher_check_key
    - LP: #1563911
  * crypto: algif_skcipher - Load TX SG list after waiting
    - LP: #1563911
  * sctp: Prevent soft lockup when sctp_accept() is called during a timeout
    event
    - LP: #1563911
  * usbvision-video: fix memory leak of alt_max_pkt_size
    - LP: #1563911
  * usbvision: fix leak of usb_dev on failure paths in usbvision_probe()
    - LP: #1563911
  * usbvision fix overflow of interfaces array
    - LP: #1563911
  * usbvision: fix crash on detecting device with invalid configuration
    - LP: #1563911
  * Linux 3.2.77
    - LP: #1563911
  * KVM: vmx: fix MPX detection
    - LP: #1563914
  * hrtimer: Handle remaining time proper for TIME_LOW_RES
    - LP: #1563914
  * timerfd: Handle relative timers with CONFIG_TIME_LOW_RES proper
    - LP: #1563914
  * posix-timers: Handle relative timers with CONFIG_TIME_LOW_RES proper
    - LP: #1563914
  * itimers: Handle relative timers with CONFIG_TIME_LOW_RES proper
    - LP: #1563914
  * usb: cdc-acm: send zero packet for intel 7260 modem
    - LP: #1563914
  * cdc-acm:exclude Samsung phone 04e8:685d
    - LP: #1563914
  * af_unix: fix struct pid memory leak
    - LP: #1563914
  * pptp: fix illegal memory access caused by multiple bind()s
    - LP: #1563914
  * sctp: allow setting SCTP_SACK_IMMEDIATELY by the application
    - LP: #1563914
  * USB: cp210x: add ID for IAI USB to RS485 adaptor
    - LP: #1563914
  * USB: visor: fix null-deref at probe
    - LP: #1563914
  * USB: serial: visor: fix crash on detecting device without write_urbs
    - LP: #1563914
  * USB: serial: option: Adding support for Telit LE922
    - LP: #1563914
  * ALSA: seq: Fix incorrect sanity check at snd_seq_oss_synth_cleanup()
    - LP: #1563914
  * ALSA: seq: Degrade the error message for too many opens
    - LP: #1563914
  * USB: serial: ftdi_sio: add support for Yaesu SCU-18 cable
    - LP: #1563914
  * PCI/AER: Flush workqueue on device remove to avoid use-after-free
    - LP: #1563914
  * libata: disable forced PORTS_IMPL for >= AHCI 1.3
    - LP: #1563914
  * virtio_pci: fix use after free on release
    - LP: #1563914
  * rfkill: fix rfkill_fop_read wait_event usage
    - LP: #1563914
  * perf annotate browser: Fix behaviour of Shift-Tab with nothing focussed
    - LP: #1563914
  * SCSI: fix crashes in sd and sr runtime PM
    - LP: #1563914
  * tty: Fix unsafe ldisc reference via ioctl(TIOCGETD)
    - LP: #1563914
  * crypto: shash - Fix has_key setting
    - LP: #1563914
  * ALSA: dummy: Disable switching timer backend via sysfs
    - LP: #1563914
  * drm/vmwgfx: respect 'nomodeset'
    - LP: #1563914
  * x86/mm/pat: Avoid truncation when converting cpa->numpages to address
    - LP: #1563914
  * crypto: algif_hash - wait for crypto_ahash_init() to complete
    - LP: #1563914
  * intel_scu_ipcutil: underflow in scu_reg_access()
    - LP: #1563914
  * ALSA: seq: Fix race at closing in virmidi driver
    - LP: #1563914
  * ALSA: rawmidi: Remove kernel WARNING for NULL user-space buffer check
    - LP: #1563914
  * ALSA: pcm: Fix potential deadlock in OSS emulation
    - LP: #1563914
  * ALSA: seq: Fix yet another races among ALSA timer accesses
    - LP: #1563914
  * ALSA: timer: Fix link corruption due to double start or stop
    - LP: #1563914
  * libata: fix sff host state machine locking while polling
    - LP: #1563914
  * ALSA: rawmidi: Make snd_rawmidi_transmit() race-free
    - LP: #1563914
  * ALSA: rawmidi: Fix race at copying & updating the position
    - LP: #1563914
  * ALSA: seq: Fix lockdep warnings due to double mutex locks
    - LP: #1563914
  * usb: xhci: apply XHCI_PME_STUCK_QUIRK to Intel Broxton-M platforms
    - LP: #1563914
  * xhci: Fix list corruption in urb dequeue at host removal
    - LP: #1563914
  * tda1004x: only update the frontend properties if locked
    - LP: #1563914
  * ALSA: timer: Fix leftover link at closing
    - LP: #1563914
  * saa7134-alsa: Only frees registered sound cards
    - LP: #1563914
  * scsi_dh_rdac: always retry MODE SELECT on command lock violation
    - LP: #1563914
  * mm, vmstat: fix wrong WQ sleep when memory reclaim doesn't make any
    progress
    - LP: #1563914
  * ocfs2/dlm: clear refmap bit of recovery lock while doing local recovery
    cleanup
    - LP: #1563914
  * crypto: user - lock crypto_alg_list on alg dump
    - LP: #1563914
  * klist: fix starting point removed bug in klist iterators
    - LP: #1563914
  * ALSA: dummy: Implement timer backend switching more safely
    - LP: #1563914
  * ALSA: timer: Fix wrong instance passed to slave callbacks
    - LP: #1563914
  * ARM: 8517/1: ICST: avoid arithmetic overflow in icst_hz()
    - LP: #1563914
  * sctp: translate network order to host order when users get a hmacid
    - LP: #1563914
  * ALSA: timer: Fix race between stop and interrupt
    - LP: #1563914
  * ALSA: timer: Fix race at concurrent reads
    - LP: #1563914
  * ahci: Intel DNV device IDs SATA
    - LP: #1563914
  * ARM: 8519/1: ICST: try other dividends than 1
    - LP: #1563914
  * btrfs: properly set the termination value of ctx->pos in readdir
    - LP: #1563914
  * unix: properly account for FDs passed over unix sockets
    - LP: #1563914
  * unix: correctly track in-flight fds in sending process user_struct
    - LP: #1563914
  * pipe: limit the per-user amount of pages allocated in pipes
    - LP: #1563914
  * iw_cxgb3: Fix incorrectly returning error on success
    - LP: #1563914
  * pipe: Fix buffer offset after partially failed read
    - LP: #1563914, #1563916
    - CVE-2016-0774
  * sched: fix __sched_setscheduler() vs load balancing race
    - LP: #1563914
  * Linux 3.2.78
    - LP: #1563914
  * crypto: {blk,giv}cipher: Set has_setkey
    - LP: #1564815
  * iommu/vt-d: Fix 64-bit accesses to 32-bit DMAR_GSTS_REG
    - LP: #1564815
  * wext: fix message delay/ordering
    - LP: #1564815
  * cfg80211/wext: fix message ordering
    - LP: #1564815
  * mac80211: fix use of uninitialised values in RX aggregation
    - LP: #1564815
  * nfs: fix nfs_size_to_loff_t
    - LP: #1564815
  * drm/i915: fix error path in intel_setup_gmbus()
    - LP: #1564815
  * cifs: fix erroneous return value
    - LP: #1564815
  * s390/dasd: prevent incorrect length error under z/VM after PAV changes
    - LP: #1564815
  * s390/dasd: fix refcount for PAV reassignment
    - LP: #1564815
  * libata: fix HDIO_GET_32BIT ioctl
    - LP: #1564815
  * xen/pciback: Check PF instead of VF for PCI_COMMAND_MEMORY
    - LP: #1564815
  * xen/pciback: Save the number of MSI-X entries to be copied later.
    - LP: #1564815
  * xen/pcifront: Fix mysterious crashes when NUMA locality information was
    extracted.
    - LP: #1564815
  * ALSA: seq: Fix leak of pool buffer at concurrent writes
    - LP: #1564815
  * tracepoints: Do not trace when cpu is offline
    - LP: #1564815
  * tracing: Fix freak link error caused by branch tracer
    - LP: #1564815
  * ALSA: seq: Fix double port list deletion
    - LP: #1564815
  * af_unix: Don't set err in unix_stream_read_generic unless there was an
    error
    - LP: #1564815
  * af_unix: Guard against other == sk in unix_dgram_sendmsg
    - LP: #1564815
  * x86, extable: Remove open-coded exception table entries in
    arch/x86/lib/copy_user_nocache_64.S
    - LP: #1564815
  * x86/uaccess/64: Make the __copy_user_nocache() assembly code more
    readable
    - LP: #1564815
  * x86/uaccess/64: Handle the caching of 4-byte nocache copies properly in
    __copy_user_nocache()
    - LP: #1564815
  * usb: dwc3: Fix assignment of EP transfer resources
    - LP: #1564815
  * net/mlx4_en: Count HW buffer overrun only once
    - LP: #1564815
  * USB: option: add support for SIM7100E
    - LP: #1564815
  * USB: cp210x: add IDs for GE B650V3 and B850V3 boards
    - LP: #1564815
  * USB: option: add "4G LTE usb-modem U901"
    - LP: #1564815
  * Adding Intel Lewisburg device IDs for SATA
    - LP: #1564815
  * ext4: fix bh->b_state corruption
    - LP: #1564815
  * kernel/resource.c: fix muxed resource handling in __request_region()
    - LP: #1564815
  * can: ems_usb: Fix possible tx overflow
    - LP: #1564815
  * mac80211: minstrel_ht: set default tx aggregation timeout to 0
    - LP: #1564815
  * sunrpc/cache: fix off-by-one in qword_get()
    - LP: #1564815
  * KVM: async_pf: do not warn on page allocation failures
    - LP: #1564815
  * jffs2: Fix page lock / f->sem deadlock
    - LP: #1564815
  * Fix directory hardlinks from deleted directories
    - LP: #1564815
  * libata: Align ata_device's id on a cacheline
    - LP: #1564815
  * ipr: Fix out-of-bounds null overwrite
    - LP: #1564815
  * ipr: Fix regression when loading firmware
    - LP: #1564815
  * mm: thp: fix SMP race condition between THP page fault and
    MADV_DONTNEED
    - LP: #1564815
  * hpfs: don't truncate the file when delete fails
    - LP: #1564815
  * ALSA: timer: Fix broken compat timer user status ioctl
    - LP: #1564815
  * ALSA: hdspm: Fix wrong boolean ctl value accesses
    - LP: #1564815
  * ALSA: hdsp: Fix wrong boolean ctl value accesses
    - LP: #1564815
  * USB: cp210x: Add ID for Parrot NMEA GPS Flight Recorder
    - LP: #1564815
  * ASoC: wm8958: Fix enum ctl accesses in a wrong type
    - LP: #1564815
  * ASoC: wm8994: Fix enum ctl accesses in a wrong type
    - LP: #1564815
  * USB: serial: option: add support for Quectel UC20
    - LP: #1564815
  * ALSA: seq: oss: Don't drain at closing a client
    - LP: #1564815
  * PM / sleep / x86: Fix crash on graph trace through x86 suspend
    - LP: #1564815
  * IB/core: Use GRH when the path hop-limit > 0
    - LP: #1564815
  * mld, igmp: Fix reserved tailroom calculation
    - LP: #1564815
  * MIPS: traps: Fix SIGFPE information leak from `do_ov' and
    `do_trap_or_bp'
    - LP: #1564815
  * ubi: Fix out of bounds write in volume update code
    - LP: #1564815
  * s390/mm: four page table levels vs. fork
    - LP: #1564815
  * Input: aiptek - fix crash on detecting device without endpoints
    - LP: #1564815
  * include/linux/poison.h: fix LIST_POISON{1,2} offset
    - LP: #1564815
  * HID: usbhid: fix recursive deadlock
    - LP: #1564815
  * Linux 3.2.79
    - LP: #1564815

 -- Kamal Mostafa <kamal@xxxxxxxxxxxxx>  Thu, 21 Apr 2016 15:09:27 -0700

** Changed in: linux-lts-trusty (Ubuntu Precise)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1563916

Title:
  CVE-2016-0774

Status in linux package in Ubuntu:
  Invalid
Status in linux-armadaxp package in Ubuntu:
  Invalid
Status in linux-flo package in Ubuntu:
  New
Status in linux-goldfish package in Ubuntu:
  New
Status in linux-lts-quantal package in Ubuntu:
  Invalid
Status in linux-lts-raring package in Ubuntu:
  Invalid
Status in linux-lts-saucy package in Ubuntu:
  Invalid
Status in linux-lts-trusty package in Ubuntu:
  Invalid
Status in linux-lts-utopic package in Ubuntu:
  Invalid
Status in linux-lts-vivid package in Ubuntu:
  Invalid
Status in linux-lts-wily package in Ubuntu:
  Invalid
Status in linux-lts-xenial package in Ubuntu:
  Invalid
Status in linux-mako package in Ubuntu:
  New
Status in linux-manta package in Ubuntu:
  Invalid
Status in linux-raspi2 package in Ubuntu:
  Invalid
Status in linux-snapdragon package in Ubuntu:
  Invalid
Status in linux-ti-omap4 package in Ubuntu:
  Invalid
Status in linux source package in Precise:
  Fix Released
Status in linux-armadaxp source package in Precise:
  Fix Released
Status in linux-flo source package in Precise:
  Invalid
Status in linux-goldfish source package in Precise:
  Invalid
Status in linux-lts-quantal source package in Precise:
  Invalid
Status in linux-lts-raring source package in Precise:
  Invalid
Status in linux-lts-saucy source package in Precise:
  Invalid
Status in linux-lts-trusty source package in Precise:
  Fix Released
Status in linux-lts-utopic source package in Precise:
  Invalid
Status in linux-lts-vivid source package in Precise:
  Invalid
Status in linux-lts-wily source package in Precise:
  Invalid
Status in linux-lts-xenial source package in Precise:
  Invalid
Status in linux-mako source package in Precise:
  Invalid
Status in linux-manta source package in Precise:
  Invalid
Status in linux-raspi2 source package in Precise:
  Invalid
Status in linux-snapdragon source package in Precise:
  Invalid
Status in linux-ti-omap4 source package in Precise:
  Fix Released
Status in linux source package in Trusty:
  Fix Released
Status in linux-armadaxp source package in Trusty:
  Invalid
Status in linux-flo source package in Trusty:
  Invalid
Status in linux-goldfish source package in Trusty:
  Invalid
Status in linux-lts-quantal source package in Trusty:
  Invalid
Status in linux-lts-raring source package in Trusty:
  Invalid
Status in linux-lts-saucy source package in Trusty:
  Invalid
Status in linux-lts-trusty source package in Trusty:
  Invalid
Status in linux-lts-utopic source package in Trusty:
  Invalid
Status in linux-lts-vivid source package in Trusty:
  Invalid
Status in linux-lts-wily source package in Trusty:
  Invalid
Status in linux-lts-xenial source package in Trusty:
  Invalid
Status in linux-mako source package in Trusty:
  Invalid
Status in linux-manta source package in Trusty:
  Invalid
Status in linux-raspi2 source package in Trusty:
  Invalid
Status in linux-snapdragon source package in Trusty:
  Invalid
Status in linux-ti-omap4 source package in Trusty:
  Invalid
Status in linux source package in Vivid:
  New
Status in linux-armadaxp source package in Vivid:
  New
Status in linux-flo source package in Vivid:
  New
Status in linux-goldfish source package in Vivid:
  New
Status in linux-lts-quantal source package in Vivid:
  New
Status in linux-lts-raring source package in Vivid:
  New
Status in linux-lts-saucy source package in Vivid:
  New
Status in linux-lts-trusty source package in Vivid:
  New
Status in linux-lts-utopic source package in Vivid:
  New
Status in linux-lts-vivid source package in Vivid:
  New
Status in linux-lts-wily source package in Vivid:
  New
Status in linux-lts-xenial source package in Vivid:
  New
Status in linux-mako source package in Vivid:
  New
Status in linux-manta source package in Vivid:
  New
Status in linux-raspi2 source package in Vivid:
  New
Status in linux-snapdragon source package in Vivid:
  New
Status in linux-ti-omap4 source package in Vivid:
  New
Status in linux source package in Wily:
  Invalid
Status in linux-armadaxp source package in Wily:
  Invalid
Status in linux-flo source package in Wily:
  New
Status in linux-goldfish source package in Wily:
  New
Status in linux-lts-quantal source package in Wily:
  Invalid
Status in linux-lts-raring source package in Wily:
  Invalid
Status in linux-lts-saucy source package in Wily:
  Invalid
Status in linux-lts-trusty source package in Wily:
  Invalid
Status in linux-lts-utopic source package in Wily:
  Invalid
Status in linux-lts-vivid source package in Wily:
  Invalid
Status in linux-lts-wily source package in Wily:
  Invalid
Status in linux-lts-xenial source package in Wily:
  Invalid
Status in linux-mako source package in Wily:
  New
Status in linux-manta source package in Wily:
  New
Status in linux-raspi2 source package in Wily:
  Invalid
Status in linux-snapdragon source package in Wily:
  Invalid
Status in linux-ti-omap4 source package in Wily:
  Invalid
Status in linux source package in Xenial:
  Invalid
Status in linux-armadaxp source package in Xenial:
  Invalid
Status in linux-flo source package in Xenial:
  New
Status in linux-goldfish source package in Xenial:
  New
Status in linux-lts-quantal source package in Xenial:
  Invalid
Status in linux-lts-raring source package in Xenial:
  Invalid
Status in linux-lts-saucy source package in Xenial:
  Invalid
Status in linux-lts-trusty source package in Xenial:
  Invalid
Status in linux-lts-utopic source package in Xenial:
  Invalid
Status in linux-lts-vivid source package in Xenial:
  Invalid
Status in linux-lts-wily source package in Xenial:
  Invalid
Status in linux-lts-xenial source package in Xenial:
  Invalid
Status in linux-mako source package in Xenial:
  New
Status in linux-manta source package in Xenial:
  Invalid
Status in linux-raspi2 source package in Xenial:
  Invalid
Status in linux-snapdragon source package in Xenial:
  Invalid
Status in linux-ti-omap4 source package in Xenial:
  Invalid
Status in linux source package in Yakkety:
  Invalid
Status in linux-armadaxp source package in Yakkety:
  Invalid
Status in linux-flo source package in Yakkety:
  New
Status in linux-goldfish source package in Yakkety:
  New
Status in linux-lts-quantal source package in Yakkety:
  Invalid
Status in linux-lts-raring source package in Yakkety:
  Invalid
Status in linux-lts-saucy source package in Yakkety:
  Invalid
Status in linux-lts-trusty source package in Yakkety:
  Invalid
Status in linux-lts-utopic source package in Yakkety:
  Invalid
Status in linux-lts-vivid source package in Yakkety:
  Invalid
Status in linux-lts-wily source package in Yakkety:
  Invalid
Status in linux-lts-xenial source package in Yakkety:
  Invalid
Status in linux-mako source package in Yakkety:
  New
Status in linux-manta source package in Yakkety:
  Invalid
Status in linux-raspi2 source package in Yakkety:
  Invalid
Status in linux-snapdragon source package in Yakkety:
  Invalid
Status in linux-ti-omap4 source package in Yakkety:
  Invalid

Bug description:
  The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in a
  certain Linux kernel backport in the linux package before
  3.2.73-2+deb7u3 on Debian wheezy and the kernel package before
  3.10.0-229.26.2 on Red Hat Enterprise Linux (RHEL) 7.1 do not properly
  consider the side effects of failed __copy_to_user_inatomic and
  __copy_from_user_inatomic calls, which allows local users to cause a
  denial of service (system crash) or possibly gain privileges via a
  crafted application, aka an "I/O vector array overrun." NOTE: this
  vulnerability exists because of an incorrect fix for CVE-2015-1805.

  Break-Fix: local-2016-0774-break local-2016-0774-fix

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1563916/+subscriptions