ELSA-2014-3073 -- Oracle kernel-uek_ofa_mlnx_enID: oval:org.secpod.oval:def:1500716 | Date: (C)2014-11-07 (M)2024-02-19 |
Class: PATCH | Family: unix |
Linux kernel built with the system-call auditing support(CONFIG_AUDITSYSCALL) is vulnerable to a kernel crash or information disclosure flaw caused by out of bounds memory access. It could occur when system call audit rules are configured on a system. Administrative privileges are required to add such audit rules. When system call audit rules are present on a system, an unprivileged user/program could use this flaw to leak kernel memory bytes or crash the system resulting DoS.
Product: |
kernel-uek |
ofa |
mlnx_en |