On Fri, 15 Jul 2016, James Patrick-Evans wrote:
>
> The memory leak is caused by the probe function of the airspy driver
> mishandeling errors and not freeing the corresponding control structures when
> an error occours registering the device to v4l2 core.
The patch causes a warning about the no
[fixing Mauro's email...]
On Fri, Jul 15, 2016 at 11:52 AM, Kees Cook wrote:
> On Fri, Jul 15, 2016 at 8:40 AM, James Patrick-Evans wrote:
>> This patch addresses CVE-2016-5400, a local DOS vulnerability caused by a
>> memory leak in the airspy usb device driver. The vulnerability is triggered
>
On Fri, Jul 15, 2016 at 8:40 AM, James Patrick-Evans wrote:
> This patch addresses CVE-2016-5400, a local DOS vulnerability caused by a
> memory leak in the airspy usb device driver. The vulnerability is triggered
> when more than 64 usb devices register with v4l2 of type VFL_TYPE_SDR or
> VFL_TYP
This patch addresses CVE-2016-5400, a local DOS vulnerability caused by a
memory leak in the airspy usb device driver. The vulnerability is triggered
when more than 64 usb devices register with v4l2 of type VFL_TYPE_SDR or
VFL_TYPE_SUBDEV.A badusb device can emulate 64 of these devices then
thr