fix use-after-free in sys_ioprio_get() in kernel critical CVE-2016-7911 [released]
asked 2017-04-26 12:00:28 +0200
This post is a wiki. Anyone with karma >75 is welcome to improve it.
Race condition in the get_task_ioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted ioprio_get system call.
CVSS v3 Base Score: 7.8 High
This patch should fix it.
File affected: kernel-adaptation-sbj-3.4.108.20161101.1/fs/ioprio.c lines 145-152
released in 2.1.1.12/Jämsänjoki
lpr ( 2017-06-14 17:56:41 +0200 )edit