Linux kernel (Utopic HWE) vulnerability

ID USN-2529-1
Type ubuntu
Reporter Ubuntu
Modified 2015-03-12T00:00:00


It was discovered that the Linux kernel's Infiniband subsystem did not
properly sanitize its input parameters while registering memory regions
from userspace. A local user could exploit this flaw to cause a denial of
service (system crash) or to potentially gain administrative privileges.