The Linux kernel 4.15 has a Buffer Overflow via an SNDRVSEQIOCTLSETCLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.
[
{
"digest": {
"line_hashes": [
"12024330737713711261222352654462916312",
"6780357473057042638143037725950792138",
"330231096515155002573257067016324408055",
"143153355941887363939513418593329771654",
"277244819188835151547870360818312079488",
"324404656071287017220286252268968454512",
"280890572256626017974600042866686700562",
"163110708650114806140925637393356565171",
"45734227917212401222835711630436055551",
"7775835646629599094784095007776396667"
],
"threshold": 0.9
},
"id": "CVE-2018-7566-1383fa0c",
"target": {
"file": "sound/core/seq/seq_clientmgr.c"
},
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@d15d662e89fc667b90cd294b0eb45694e33144da",
"deprecated": false
},
{
"digest": {
"function_hash": "173076558387177848843214620708781326517",
"length": 1504.0
},
"id": "CVE-2018-7566-53a73d39",
"target": {
"file": "sound/core/seq/seq_clientmgr.c",
"function": "snd_seq_write"
},
"signature_type": "Function",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@d15d662e89fc667b90cd294b0eb45694e33144da",
"deprecated": false
}
]