VDB
CVE-2016-4578
CVE-2016-4578
PUBLISHED
sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions.
EPSS 0.23% · 45.9th percentile
Risk Scores
EPSS Score
0.23%
45.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:24.04:LTS | linux-riscv | 6.8.0-57.59.1, 6.8.0-28.28.1, 6.8.0-39.39.1 |
| Ubuntu:16.04:LTS | linux-snapdragon | 4.4.0-1015.18, 4.4.0-1012.12, 0 |
| Ubuntu:22.04:LTS | linux-riscv | 5.15.0-1028.32, 5.13.0-1004.4, 5.15.0-1019.22 |
| Ubuntu:14.04:LTS | linux | 3.13.0-52.86, 3.13.0-53.88, 3.13.0-53.89 |
| Ubuntu:24.04:LTS | linux-gcp-6.11 | 6.11.0-1006.6~24.04.2, 6.11.0-1014.14~24.04.1, * |
| Ubuntu:24.04:LTS | linux-realtime | 0, 6.8.1-1015.16 |
| Ubuntu:22.04:LTS | linux-intel-iot-realtime | 0, 5.15.0-1073.75 |
| Ubuntu:24.04:LTS | linux-lowlatency-hwe-6.11 | 6.11.0-1015.16~24.04.2, 6.11.0-1014.15~24.04.1, 6.11.0-1013.14~24.04.1 |
| Ubuntu:20.04:LTS | linux-azure-fde | 5.4.0-1063.66+cvm3.2, 5.4.0-1063.66+cvm2.2, 0 |
| Ubuntu:20.04:LTS | linux-gkeop | 5.4.0-1083.87, 0, 5.4.0-1008.9 |
| Ubuntu:16.04:LTS | linux-raspi2 | 4.4.0-1009.10, 0, 4.4.0-1012.16 |
| Ubuntu:18.04:LTS | linux-hwe | 5.3.0-61.55~18.04.1, 5.3.0-62.56~18.04.1, 5.3.0-64.58~18.04.1 |
| Ubuntu:24.04:LTS | linux-raspi-realtime | 0, 6.8.0-2019.20 |
| Ubuntu:14.04:LTS | linux-lts-vivid | *, 3.19.0-18.18~14.04.1, 3.19.0-21.21~14.04.1 |
| Ubuntu:20.04:LTS | linux-riscv | 5.4.0-26.30, 0, 5.4.0-24.28 |
| Ubuntu:16.04:LTS | linux | 4.4.0-18.34, 4.4.0-21.37, 4.4.0-22.39 |
| Ubuntu:14.04:LTS | linux-lts-xenial | *, 0, 4.4.0-13.29~14.04.1 |
| Ubuntu:20.04:LTS | linux-gke | 5.4.0-1035.37, 5.4.0-1033.35, 5.4.0-1053.56 |
| Ubuntu:18.04:LTS | linux-gcp | 4.15.0-1024.25, 0, 4.15.0-1001.1 |
| Ubuntu:18.04:LTS | linux-azure | 5.0.0-1035.37, 4.15.0-1028.29, 4.15.0-1032.33 |
…and 8 more
Exploit Intelligence
Timeline
- May 12, 2016 CVE Published
- Mar 11, 2019 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-4578 third-party-advisory
- https://git.kernel.org/cgit/linux/kernel/git/tiwai/sound.git/commit/?h=for-next&id=9a47e9cff994f37f7f0dbd9ae23740d0f64f9fe6 third-party-advisory
- https://git.kernel.org/cgit/linux/kernel/git/tiwai/sound.git/commit/?h=for-next&id=e4ec8cc8039a7063e24204299b462bd1383184a5 third-party-advisory
- https://ubuntu.com/security/notices/USN-3016-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-3016-2 vendor-advisory
- https://ubuntu.com/security/notices/USN-3017-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-3017-3 vendor-advisory
- https://ubuntu.com/security/notices/USN-3016-3 vendor-advisory
- https://ubuntu.com/security/notices/USN-3016-4 vendor-advisory
- https://ubuntu.com/security/notices/USN-3017-2 vendor-advisory
- https://ubuntu.com/security/notices/USN-3020-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-3018-2 vendor-advisory
- https://ubuntu.com/security/notices/USN-3018-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-3019-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-3021-2 vendor-advisory
- https://ubuntu.com/security/notices/USN-3021-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-4578 third-party-advisory