[LU-9686] kernel update [RHEL7.3 3.10.0-514.21.2.el7] Created: 19/Jun/17  Updated: 11/Sep/18  Resolved: 11/Sep/18

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: Bob Glossman (Inactive) Assignee: Bob Glossman (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Related
is related to LU-9561 kernel update [RHEL7.3 3.10.0-514.21.... Resolved
is related to LU-9717 kernel update [RHEL7.3 3.10.0-514.26.... Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

Security Fix(es):

  • A flaw was found in the way memory was being allocated on the stack for user
    space binaries. If heap (or different memory region) and stack memory regions
    were adjacent to each other, an attacker could use this flaw to jump over the
    stack guard gap, cause controlled memory corruption on process stack or the
    adjacent memory region, and thus increase their privileges on the system. This
    is a kernel-side mitigation which increases the stack guard gap size from one
    page to 1 MiB to make successful exploitation of this issue more difficult.
    (CVE-2017-1000364, Important)

Bugs fixed (https://bugzilla.redhat.com/):

1461333 - CVE-2017-1000364 kernel: heap/stack gap jumping via unbounded stack allocations

 Comments   
Comment by Gerrit Updater [ 21/Jun/17 ]

Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/27759
Subject: LU-9686 kernel: kernel update RHEL7.3 [3.10.0-514.21.2.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 3cd40681978cb78aeb18395adc4365a01ff11aa9

Generated at Sat Feb 10 02:28:21 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.