Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2018-1091

In the flush_tmregs_to_thread function in arch/powerpc/kernel/ptrace.c in the Linux kernel before 4.13.5, a guest kernel crash can be triggered from unprivileged userspace during a core dump on a POWER host due to a missing processor feature check and an erroneous use of transactional memory (TM) instructions in the core dump path, leading to a denial of service.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://git.kernel.org/...
CONFIRM: http://openwall.com/li...
CONFIRM: https://access.redhat....
CONFIRM: https://bugzilla.redha...
CONFIRM: https://github.com/tor...
CONFIRM: https://marc.info/?l=l...
CONFIRM: https://www.kernel.org...
REDHAT: RHSA-2018:1318

Launchpad.net

CVE 2018-1091

Related bugs

References