CVE-2016-2066

Integer signedness error in the MSM QDSP6 audio driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges or cause a denial of service (memory corruption) via a crafted application that makes an ioctl call.

Weakness

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Affected Software

Name	Vendor	Start Version	End Version
Linux_kernel	Linux	3.0 (including)	3.19.8 (including)
Linux	Ubuntu	wily	*
Linux-flo	Ubuntu	trusty	*
Linux-flo	Ubuntu	vivid/stable-phone-overlay	*
Linux-flo	Ubuntu	wily	*
Linux-flo	Ubuntu	xenial	*
Linux-flo	Ubuntu	yakkety	*
Linux-goldfish	Ubuntu	trusty	*
Linux-goldfish	Ubuntu	wily	*
Linux-goldfish	Ubuntu	xenial	*
Linux-goldfish	Ubuntu	yakkety	*
Linux-goldfish	Ubuntu	zesty	*
Linux-grouper	Ubuntu	trusty	*
Linux-linaro-omap	Ubuntu	precise	*
Linux-linaro-shared	Ubuntu	precise	*
Linux-linaro-vexpress	Ubuntu	precise	*
Linux-lts-quantal	Ubuntu	precise	*
Linux-lts-quantal	Ubuntu	precise/esm	*
Linux-lts-raring	Ubuntu	precise	*
Linux-lts-raring	Ubuntu	precise/esm	*
Linux-lts-saucy	Ubuntu	precise	*
Linux-lts-saucy	Ubuntu	precise/esm	*
Linux-maguro	Ubuntu	trusty	*
Linux-mako	Ubuntu	trusty	*
Linux-mako	Ubuntu	vivid/stable-phone-overlay	*
Linux-mako	Ubuntu	wily	*
Linux-mako	Ubuntu	xenial	*
Linux-mako	Ubuntu	yakkety	*
Linux-manta	Ubuntu	trusty	*
Linux-manta	Ubuntu	wily	*
Linux-qcm-msm	Ubuntu	precise	*
Linux-raspi2	Ubuntu	vivid/ubuntu-core	*
Linux-raspi2	Ubuntu	wily	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2066
CWE	https://cwe.mitre.org/data/definitions/269.html

Improper Privilege Management

Weakness

Affected Software

Potential Mitigations

References

CVE-2016-2066

Improper Privilege Management

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References