oss-sec mailing list archives
CVE-2018-1091: Linux kernel: a KVM guest kernel crash during core dump on POWER9 host
From: Vladis Dronov <vdronov () redhat com>
Date: Tue, 27 Mar 2018 13:37:39 -0400 (EDT)
Hello, A guest kernel crash can be triggered from unprivileged userspace during core dump on POWER host due to a missing processor feature check and an erroneous use of transactional memory (TM) instructions in the core dump path leading to a denial of service. References: https://marc.info/?l=linuxppc-embedded&m=150535531910494&w=2 https://bugzilla.redhat.com/show_bug.cgi?id=1558149 An upstream fix: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c1fa0768a8713b135848f78fd43ffc208d8ded70 Best regards, Vladis Dronov | Red Hat, Inc. | Product Security Engineer
Current thread:
- CVE-2018-1091: Linux kernel: a KVM guest kernel crash during core dump on POWER9 host Vladis Dronov (Mar 27)