CVE-2018-8897: Race Condition

First published: Fri Apr 13 2018(Updated: )

A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, processor does not deliver interrupts and exceptions, they are delivered once the first instruction after the stack switch is executed. An unprivileged system user could use this flaw to crash the system kernel resulting in DoS. Upstream patch: --------------- -&gt; <a href="https://git.kernel.org/linus/d8ba61ba58c88d5207c1ba2f7d9a2280e7d03be9">https://git.kernel.org/linus/d8ba61ba58c88d5207c1ba2f7d9a2280e7d03be9</a> Reference: ---------- -&gt; <a href="http://www.openwall.com/lists/oss-security/2018/05/08/4">http://www.openwall.com/lists/oss-security/2018/05/08/4</a>

Credit: Andy Lutomirski Nick Peterson (linkedin.com/in/everdox) Everdox Tech LLC cve@mitre.org cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/redhat-cve
• collector/nvd-index
• collector/launchpad-cve
• source/Launchpad
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2018-8897
• agent/type
• agent/first-publish-date
• collector/apple-support
• agent/software-canonical-lookup-request
• agent/author
• agent/remedy
• agent/severity
• agent/description
• agent/weakness
• collector/nvd-cve
• source/NVD
• agent/software-canonical-lookup
• agent/references
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/tags
• agent/event
• collector/security-tracker-debian
• source/Debian
• agent/softwarecombine
• collector/usn-cve
• source/Ubuntu
• package-manager/redhat
• vendor/debian
• canonical/debian debian linux
• version/debian debian linux/7.0
• version/debian debian linux/8.0
• version/debian debian linux/9.0
• vendor/canonical
• canonical/canonical ubuntu linux
• version/canonical ubuntu linux/14.04
• version/canonical ubuntu linux/16.04
• version/canonical ubuntu linux/17.10
• vendor/redhat
• canonical/redhat enterprise linux server
• version/redhat enterprise linux server/7.0
• canonical/redhat enterprise linux workstation
• version/redhat enterprise linux workstation/7.0
• canonical/redhat enterprise virtualization manager
• version/redhat enterprise virtualization manager/3.0
• vendor/citrix
• canonical/citrix xenserver
• version/citrix xenserver/6.0.2
• version/citrix xenserver/6.2.0
• version/citrix xenserver/6.5
• version/citrix xenserver/7.0
• version/citrix xenserver/7.1
• version/citrix xenserver/7.2
• version/citrix xenserver/7.3
• version/citrix xenserver/7.4
• vendor/synology
• canonical/synology skynas
• canonical/synology diskstation manager
• version/synology diskstation manager/5.2
• version/synology diskstation manager/6.0
• version/synology diskstation manager/6.1
• vendor/apple
• canonical/apple mac os x
• vendor/xen
• canonical/xen xen
• vendor/freebsd
• canonical/freebsd freebsd
• version/freebsd freebsd/11.0
• canonical/apple macos high sierra
• canonical/apple sierra
• canonical/apple el capitan
• package-manager/debian