Wind River Support Network


SCP7-184 : Security Advisory - linux - CVE-2015-1805

Created: Jun 7, 2015    Updated: Sep 8, 2018
Resolved Date: Jul 10, 2015
Previous ID: LIN4-32704
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel


A flaw was found in the way pipe_iov_copy_from_user() and
pipe_iov_copy_to_user() functions handled iovecs remaining len accounting on
failed atomic access.

An unprivileged local user could this flaw to crash the system or, potentially,
escalate their privileges on the system.

Upstream fixes:

Other Downloads

Live chat