1440877 – (CVE-2017-7319) CVE-2017-7319 kernel: Sending SIGIO signal to any process via fcntl

Bug 1440877 (CVE-2017-7319) - CVE-2017-7319 kernel: Sending SIGIO signal to any process via fcntl

Summary: CVE-2017-7319 kernel: Sending SIGIO signal to any process via fcntl

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2017-7319
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1440881
TreeView+	depends on / blocked

Reported:	2017-04-10 16:23 UTC by Adam Mariš
Modified:	2025-08-20 10:44 UTC (History)
CC List:	36 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2017-05-03 10:28:10 UTC
Embargoed:

Attachments	(Terms of Use)

Description Adam Mariš 2017-04-10 16:23:00 UTC

A vulnerability in the Linux kernel package 3.16.0-28 on Ubuntu 14.04 LTS allows any user to send a SIGIO signal to any process. If the process does not catch or ignore the signal, it will exit.

External References:

https://packetstormsecurity.com/files/142008/Linux-Kernel-Ubuntu-14.04-LTS-SIGIO-Signal.html

Comment 1 Vladis Dronov 2017-05-03 10:26:11 UTC

Statement:

MITRE has rejected this CVE as the flaw was not confirmed:

https://nvd.nist.gov/vuln/detail/CVE-2017-7319

https://bugzilla.novell.com/show_bug.cgi?id=1033438#c4

None of the Red Hat products is vulnerable to this not-a-flaw.

Note You need to log in before you can comment on or make changes to this bug.

agordeev
aquini
bhu
dhoward
dominik.mierzejewski
esammons
fhrbata
gansalmon
hwkernel-mgr
iboverma
ichavero
itamar
jforbes
jkacur
jonathan
jross
jwboyer
kernel-maint
kernel-mgr
labbott
lgoncalv
lwang
madhu.chinakonda
matt
mchehab
mcressma
meissner
mguzik
nmurray
pholasek
plougher
rt-maint
rvrbovsk
slawomir
vdronov
williams