Red Hat Security Advisory 2015-0870-01

Discussion in 'News Aggregator' started by Packet Storm, 23 Apr 2015.

  1. Packet Storm

    Packet Storm Guest

    Red Hat Security Advisory 2015-0870-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. It was found that the Linux kernel's Infiniband subsystem did not properly sanitize input parameters while registering memory regions from user space via the verbs API. A local user with access to a /dev/infiniband/uverbsX device could use this flaw to crash the system or, potentially, escalate their privileges on the system.

    Continue reading...
     

Share This Page

Loading...