blob: f34ec337da74b53c10315554c7c25e3db35056a8 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
Description: Race condition between notify_handle_event() and sys_rename()
References:
http://www.openwall.com/lists/oss-security/2017/08/03/2
https://patchwork.kernel.org/patch/9755753/
https://patchwork.kernel.org/patch/9755757/
Notes:
carnil> Introduced by 7053aee26a3548ebaba046ae2e52396ccf56ac6c in v3.14-rc1
Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1468283
https://bugzilla.kernel.org/show_bug.cgi?id=196279
upstream: released (4.13-rc1) [49d31c2f389acfe83417083e1208422b4091cd9e]
4.9-upstream-stable: released (4.9.41) [ad25f11ed216d5ce3b5566b2f187b59fa3061b40]
3.16-upstream-stable: released (3.16.47) [2cbc76ab0654c9759e390899584c5f788e21dc5a]
3.2-upstream-stable: N/A "Vulnerable code introduced in (3.14-rc1) [7053aee26a3548ebaba046ae2e52396ccf56ac6c]"
sid: released (4.12.6-1)
4.9-stretch-security: released (4.9.30-2+deb9u3) [bugfix/all/dentry-name-snapshots.patch]
3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/dentry-name-snapshots.patch]
3.2-wheezy-security: N/A "Vulnerable code not present"
|
