PT-2016-3618 · Linux+3 · Linux Kernel+3

Sami Farin

Published

2014-02-21

Updated

2017-11-12

CVE-2015-4170

CVSS v3.1

4.7

Medium

Vector

AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.13-rc4-next-20131218

Description A race condition exists in the ldsem cmpxchg function, allowing local users to cause a denial of service. This can lead to a deadlock between ldsem down read and ldsem down write by establishing a new tty thread during the shutdown of a previous tty thread.

Recommendations For Linux kernel versions prior to 3.13-rc4-next-20131218, update to version 3.13-rc4-next-20131218 or later to resolve the issue.

Exploit

Fix

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALT-PU-2014-1232

ALT-PU-2014-2064

CESA-2015_2152

CVE-2015-4170

RHSA-2015:2152

RHSA-2015:2411

RHSA-2015_2152

RHSA-2015_2411

RHSA-2016:1395

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

PT-2016-3618 · Linux+3 · Linux Kernel+3

CVE-2015-4170

Weakness Enumeration

Related Identifiers

Affected Products

References · 28