Vigil@nce - Linux kernel: denial of service via the module drm/vmwgfx
May 2017 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can use an ioctl system call to the video device
driver vmwgfx of the Linux kernel, in order to make the kernel
loop.
– Impacted products: Linux.
– Severity: 2/4.
– Creation date: 31/03/2017.
DESCRIPTION OF THE VULNERABILITY
The Linux kernel includes a video driver vmwgfx for guests systems
running under VMware ESX.
The vulnerabilities described in VIGILANCE-VUL-22260 and
VIGILANCE-VUL-22282 have not been fully fixed. After these 2
patches, an attacker can still trigger a very long loop.
A local attacker can therefore use an ioctl system call to the
video device driver vmwgfx of the Linux kernel, in order to make
the kernel loop.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-the-module-drm-vmwgfx-22298