CVE-2008-3272

Impact:
Moderate
Public Date:
2008-08-02
Bugzilla:
457995: CVE-2008-3272 kernel snd_seq_oss_synth_make_info leak

The MITRE CVE dictionary describes this issue as:

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.

Find out more about CVE-2008-3272 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (kernel) RHSA-2008:0885 2008-09-24
Red Hat Enterprise Linux 4 (kernel) RHSA-2008:0972 2008-11-19
MRG Grid for RHEL 5 Server (kernel-rt) RHSA-2008:0857 2008-10-07

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.