1. Home
  2. Vulnerabilities
  3. CVE-2015-4170

CVE-2015-4170

CVSS v3.0 4.7 (Medium)
47% Progress
CVSS v2.0 4.7 (Medium)
47% Progress
EPSS 0.10 % (43th)
0.10% Progress
Affected Products 6
Advisories 3
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Race condition in the ldsem_cmpxchg function in drivers/tty/tty_ldsem.c in the Linux kernel before 3.13-rc4-next-20131218 allows local users to cause a denial of service (ldsem_down_read and ldsem_down_write deadlock) by establishing a new tty thread during shutdown of a previous tty thread.

Weaknesses
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2016-05-02 10:59:12
(8 years ago)
Updated Date
2017-11-12 02:29:00
(6 years ago)

Affected Products

Linux

Redhat

Configuration #1

    CPE23 From Up To
  Linux Kernel 3.13.3 and prior versions cpe:2.3:o:linux:linux_kernel <= 3.13.3

Configuration #2

    CPE23 From Up To
  Redhat Enterprise Linux Compute Node Eus 7.1 cpe:2.3:o:redhat:enterprise_linux_compute_node_eus:7.1
  Redhat Enterprise Linux for Ibm Z Systems Eus 7.1 S390x cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.1_s390x
  Redhat Enterprise Linux for Power Big Endian Eus 7.1 Ppc64 cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.1_ppc64
  Redhat Enterprise Linux for Power Little Endian Eus 7.1 Ppc64le cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.1_ppc64le
  Redhat Enterprise Linux Server Eus 7.1 cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1