fix use-after-free in sys_ioprio_get() in kernel critical CVE-2016-7911

Tracked by Jolla (In release)

asked 2017-04-26 12:00:28 +0300

this post is marked as community wiki

This post is a wiki. Anyone with karma >75 is welcome to improve it.

updated 2017-04-26 12:01:23 +0300

lpr gravatar image

Description

Race condition in the get_task_ioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted ioprio_get system call.

CVSS v3 Base Score: 7.8 High

This patch should fix it.

File affected: kernel-adaptation-sbj-3.4.108.20161101.1/fs/ioprio.c lines 145-152

edit retag flag offensive close delete