The Linux kernel before 3.15.4 on Intel processors does...
Moderate severity
Unreviewed
Published
May 13, 2022
to the GitHub Advisory Database
•
Updated Feb 25, 2024
Description
Published by the National Vulnerability Database
Jul 9, 2014
Published to the GitHub Advisory Database
May 13, 2022
Last updated
Feb 25, 2024
The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.
References