EUVD-2017-1545

Malware in sbrugna...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the Linux kernel's Transparent Huge Pages THP implementation. A local, unprivileged user could abuse this flaw to allow the user stack when it is using huge pages to grow and cause a denial of service...

CVE-2017-1000405

The Linux Kernel versions 2.6.38 through 4.14 have a problematic use of pmdmkdirty in the touchpmd function inside the THP implementation. touchpmd can be reached by getuserpages. In such case, the pmd will become dirty. This scenario breaks the new canfollowwritepmd's logic - pmd can become dirt...

CVE-2017-1000405

CVE-2017-1000405 affects Linux kernel THP handling in versions 2.6.38–4.14. A flawed use of pmd_mkdirty() in touch_pmd() can be reached via get_user_pages(), allowing pmds to become dirty without a COW cycle. This enables overwriting read‑only huge pages (including zero pages and sealed SHMEM map...

CVE-2017-1000405

The Linux Kernel versions 2.6.38 through 4.14 have a problematic use of pmdmkdirty in the touchpmd function inside the THP implementation. touchpmd can be reached by getuserpages. In such case, the pmd will become dirty. This scenario breaks the new canfollowwritepmd's logic - pmd can become dirt...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - Multiple buffer overflow flaws were found in the Linux kernel's Management Module Support for Message Passing Technology MPT based controllers. A local,...