CVE-2017-9985

Source
Severity Medium
Remote No
Type Denial of service
Description
The snd_msndmidi_input_read function in sound/isa/msnd/msnd_midi.c in the Linux kernel before 4.13, 4.9.50, 4.4.99 and 4.1.45 allows local users to cause a denial of service (over-boundary access) or possibly have unspecified other impact by changing the value of a message queue head pointer between two kernel reads of that value, aka a "double fetch" vulnerability.
Group Package Affected Fixed Severity Status Ticket
AVG-556 linux-lts 4.9.49-1 4.9.50-1 Medium Fixed
AVG-555 linux-hardened 4.11.7-1 4.13-1 Medium Fixed
AVG-554 linux-zen 4.11.7-1 4.13-1 Medium Fixed
AVG-331 linux 4.11.7-1 4.13-1 Medium Fixed
References
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=20e2b791796bd68816fa115f12be5320de2b8021
https://bugzilla.kernel.org/show_bug.cgi?id=196133