Vigil@nce - Linux kernel: denial of service via PPC State
April 2016 by Marc Jacob
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can generate an error in PowerPC states on the
Linux kernel, in order to trigger a denial of service.
Impacted products: Linux.
Severity: 1/4.
Creation date: 13/04/2016.
DESCRIPTION OF THE VULNERABILITY
The Linux kernel restores registers after processing a signal.
However, some PowerPC state registers are not restored, which
leads to a BUG_ON().
A local attacker can therefore generate an error in PowerPC states
on the Linux kernel, in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-PPC-State-19370