The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim call, which allows local users to cause a denial of service (TM Bad Thing exception and panic) via a crafted application.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 02:39
Type | Values Removed | Values Added |
---|---|---|
References | () http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7f821fc9c77a9b01fe7b1d6e72717b33d8d64142 - Vendor Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html - Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html - Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html - | |
References | () http://rhn.redhat.com/errata/RHSA-2016-2574.html - | |
References | () http://rhn.redhat.com/errata/RHSA-2016-2584.html - | |
References | () http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.1 - | |
References | () http://www.openwall.com/lists/oss-security/2016/04/13/1 - | |
References | () http://www.securitytracker.com/id/1035594 - | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=1326540 - Issue Tracking | |
References | () https://github.com/torvalds/linux/commit/7f821fc9c77a9b01fe7b1d6e72717b33d8d64142 - Patch, Vendor Advisory |
Information
Published : 2016-04-27 17:59
Updated : 2024-11-21 02:39
NVD link : CVE-2015-8845
Mitre link : CVE-2015-8845
CVE.ORG link : CVE-2015-8845
JSON object : View
Products Affected
suse
- suse_linux_enterprise_real_time_extension
- suse_linux_enterprise_workstation_extension
- suse_linux_enterprise_module_for_public_cloud
- suse_linux_enterprise_live_patching
- suse_linux_enterprise_software_development_kit
linux
- linux_kernel
novell
- suse_linux_enterprise_server
- suse_linux_enterprise_desktop
CWE
CWE-284
Improper Access Control