Denial of Service Vulnerability in Linux Kernel on PowerPC Platform

Denial of Service Vulnerability in Linux Kernel on PowerPC Platform

CVE-2019-13648 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

In the Linux kernel through 5.2.1 on the powerpc platform, when hardware transactional memory is disabled, a local user can cause a denial of service (TM Bad Thing exception and system crash) via a sigreturn() system call that sends a crafted signal frame. This affects arch/powerpc/kernel/signal_32.c and arch/powerpc/kernel/signal_64.c.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.