Note:
This project will be discontinued after December 13, 2021. [more]
2018-04-13
The kernel_wait4 function in kernel/exit.c in the Linux kernel before 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value.
Products | Ubuntu_linux, Debian_linux, Linux_kernel |
Type | Improper Input Validation (CWE-20) |
First patch |
https://github.com/torvalds/linux/commit/dd83c161fbcc5d8be637ab159c0de015cbff5ba4 |
Relevant file/s | ./kernel/exit.c (modified, +4) |
Links |
• http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=dd83c161fbcc5d8be637ab159c0de015cbff5ba4
• https://news.ycombinator.com/item?id=2972021 • http://www.securityfocus.com/bid/103774 • https://usn.ubuntu.com/3696-1/ • https://usn.ubuntu.com/3696-2/ |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: