[PATCH 0/1][T/B] CVE-2018-14734 - Denial of Service in Infiniband core
Tyler Hicks
tyhicks at canonical.com
Tue Nov 20 01:18:47 UTC 2018
https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2018-14734
drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows
ucma_leave_multicast to access a certain data structure after a cleanup
step in ucma_process_join, which allows attackers to cause a denial of
service (use-after-free).
Clean cherry pick to Bionic and Trusty. Xenial has already been fixed thanks to
the fix coming in via linux-stable. I was unable to test the affected code due
to lack of necessary hardware. However, the build logs are clean and the fix is
easy to review.
Tyler
More information about the kernel-team
mailing list