VDB

GCVE-110-MAGEIA-2016-429

GCVE-110-MAGEIA-2016-429
Advisory Published
Vulnetix · Advisory published December 29, 2016
This update is based on upstream 4.4.39 and fixes at least the following security issues: Due to lack of size checking on ICMP header length, it is possible to cause out-of-bounds read on stack (CVE-2016-8399) A use-after-free vulnerability in the SCSI generic driver allows users with write access to /dev/sg* or /dev/bsg* to elevate their privileges (CVE-2016-9576). A use-after-free vulnerability was found in ALSA pcm layer, which allows local users to cause a denial of service, memory corruption, or possibly other unspecified impact (CVE-2016-9794). Other fixes in this update: - fix for HID gamepad DragonRise (mga#19853) - fix for radeon driver crashing on Dell Precision M4800 (mga#19892) For other upstream fixes in this update, see the referenced changelogs.

Affected Products

VendorProductVersionsPlatforms
Mageiakmod-virtualbox0 (affected), 5.1.10-3.1.mga5 (unaffected)
Mageiakmod-vboxadditions0 (affected), 5.1.10-3.1.mga5 (unaffected)
Mageiakernel-userspace-headers0 (affected), 4.4.39-1.mga5 (unaffected)
Mageiakmod-xtables-addons2.10-18.mga5 (unaffected), 0 (affected)
Mageiakernel0 (affected), 4.4.39-1.mga5 (unaffected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›