Wind River Support Network

HomeDefectsLIN5-22567
Fixed

LIN5-22567 : Security Advisory - linux - CVE-2017-6001

Created: Feb 27, 2017    Updated: May 29, 2018
Resolved Date: Apr 17, 2017
Found In Version: 5.0.1.38
Fix Version: 5.0.1.40
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Kernel

Description

Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to gain privileges via a crafted application that makes concurrent perf_event_open system calls for moving a software group into a hardware context.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6786.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6001

Other Downloads


Live chat
Online