Bug 854633 (CVE-2013-7026) - VUL-1: CVE-2013-7026: kernel: Multiple race conditions in ipc/shm.c
Summary: VUL-1: CVE-2013-7026: kernel: Multiple race conditions in ipc/shm.c
Status: RESOLVED FIXED
Alias: CVE-2013-7026
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P4 - Low : Major
Target Milestone: ---
Assignee: Petr Mladek
QA Contact: Security Team bot
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-12-10 08:00 UTC by Marcus Meissner
Modified: 2014-04-10 16:30 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2013-12-10 08:00:52 UTC 
via cve db

CVE-2013-7026

Multiple race conditions in ipc/shm.c in the Linux kernel before 3.12.2 allow local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted application that uses shmctl IPC_RMID operations in conjunction with other shm system calls.

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a399b29dfbaaaf91162b2dc5a5875dd51bbfa2a1
Comment 1 Swamp Workflow Management 2013-12-10 23:00:18 UTC 
bugbot adjusting priority
Comment 3 Marcus Meissner 2013-12-12 15:43:46 UTC 
It affects only 3.10 and 3.11, so its openSUSE 13.1 only.
Comment 4 Petr Mladek 2014-04-10 16:30:16 UTC 
Also SLE12 has been affected because it was based on 3.10.

Anyway, the fix went into upstream stable releases and we have already got it this way. I see it in the 
following branches:

   openSUSE-13.1: patches.kernel.org/patch-3.11.9-10
   SLE12:                patches.kernel.org/patch-3.12.1-2