CVE-2007-5966 kernel: non-root can trigger cpu_idle soft lockup
Issue
- This is a backport request of a fix for CVE-2007-5966 on 5.2.z.
-
Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux
kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a
denial of service (panic) via a large relative timeout value. NOTE: some of
these details are obtained from third party information.
Environment
-
Red Hat Entperprise Linux 5 Update 2
-
All architectures
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.