oss-sec mailing list archives

CVE Request: Linux: powerpc/tm: Always reclaim in start_thread() for exec() class syscalls

From: Michael Ellerman <mpe () ellerman id au>
Date: Fri, 24 Jun 2016 17:23:43 +1000

Hi,

We've found an issue in the handling of Transactional Memory on powerpc
systems. An unprivileged local user can crash the kernel by starting a
transaction, suspending it, and then calling any of the exec() class system
calls.

More info:
 https://patchwork.ozlabs.org/patch/636776/
 https://patchwork.ozlabs.org/patch/636774/ (test case)

Could you please allocate a CVE for this?

cheers

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

CVE Request: Linux: powerpc/tm: Always reclaim in start_thread() for exec() class syscalls Michael Ellerman (Jun 24)
- Re: CVE Request: Linux: powerpc/tm: Always reclaim in start_thread() for exec() class syscalls - Linux kernel cve-assign (Jun 25)