An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local user to crash the system or read unauthorized random data from memory.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 10.0 | |
enterprise_linux | eq | 8.0 | |
enterprise_linux | eq | 9.0 |