Wind River Support Network

HomeDefectsLIN9-5712
Fixed

LIN9-5712 : Security Advisory - linux - CVE-2017-15537

Created: Oct 29, 2017    Updated: Dec 3, 2018
Resolved Date: Nov 13, 2017
Found In Version: 9.0.0.11
Fix Version: 9.0.0.12
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Kernel

Description

The x86/fpu (Floating Point Unit) subsystem in the Linux kernel before 4.13.5, when a processor supports the xsave feature but not the xsaves feature, does not correctly handle attempts to set reserved bits in the xstate header via the ptrace() or rt_sigreturn() system call, allowing local users to read the FPU registers of other processes on the system, related to arch/x86/kernel/fpu/regset.c and arch/x86/kernel/fpu/signal.c.

https://nvd.nist.gov/vuln/detail/CVE-2017-15537

Other Downloads


CVEs


Live chat
Online