CVE-2015-4170

Published: May 2, 2016Modified: May 6, 2026

4.7

Vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 1.0 / Impact: 3.6

Source: NVD

Description

Race condition in the ldsem_cmpxchg function in drivers/tty/tty_ldsem.c in the Linux kernel before 3.13-rc4-next-20131218 allows local users to cause a denial of service (ldsem_down_read and ldsem_down_write deadlock) by establishing a new tty thread during shutdown of a previous tty thread.

Affected (6)

Products: Linux: Linux Kernel · Redhat: Enterprise Linux Compute Node Eus, Enterprise Linux For Ibm Z Systems Eus, Enterprise Linux For Power Big Endian Eus, Enterprise Linux For Power Little Endian Eus, Enterprise Linux Server Eus

1 product

5 products

Enterprise Linux Compute Node Eus

Enterprise Linux For Ibm Z Systems Eus

Enterprise Linux For Power Big Endian Eus

Enterprise Linux For Power Little Endian Eus

Enterprise Linux Server Eus

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Up to 3.13.3

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Compute Node Eus	Version 7.1
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 7.1_s390x
Redhat Enterprise Linux For Power Big Endian Eus	Version 7.1_ppc64
Redhat Enterprise Linux For Power Little Endian Eus	Version 7.1_ppc64le
Redhat Enterprise Linux Server Eus	Version 7.1

Related CWEs

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References (16)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cf872776fc84128bb779ce2b83a37c884c3203ae

Source: cve@mitre.org

Vendor Advisory

http://www.openwall.com/lists/oss-security/2015/05/26/1

Source: cve@mitre.org

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/74820

Source: cve@mitre.org

https://access.redhat.com/errata/RHSA-2016:1395

Source: cve@mitre.org

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1218879

Source: cve@mitre.org

Issue TrackingVDB Entry

https://github.com/torvalds/linux/commit/cf872776fc84128bb779ce2b83a37c884c3203ae

Source: cve@mitre.org

https://www.kernel.org/pub/linux/kernel/next/patch-v3.13-rc4-next-20131218.xz

Source: cve@mitre.org

Patch

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cf872776fc84128bb779ce2b83a37c884c3203ae

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.openwall.com/lists/oss-security/2015/05/26/1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/74820

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHSA-2016:1395

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1218879

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVDB Entry

https://github.com/torvalds/linux/commit/cf872776fc84128bb779ce2b83a37c884c3203ae

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.kernel.org/pub/linux/kernel/next/patch-v3.13-rc4-next-20131218.xz

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.