Denial of service vulnerability in kernel via a combination of a write action and an F_SETFL fcntl operation - CVE-2014-8086
|ID: oval:org.secpod.oval:def:21818||Date: (C)2014-12-01 (M)2017-09-11|
|Class: VULNERABILITY||Family: unix|
The host is installed with Linux kernel through 3.17 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a combination of a write action and an F_SETFL fcntl operation for the O_DIRECT flag. Successful exploitation allows local users to cause a denial of service (file unavailability).
|Red Hat Enterprise Linux 7|