Linux kernel built with the KVM virtualization(CONFIG_KVM) support for PowerPC platform(CONFIG_PPC), is vulnerable to a NULL pointer de-reference issue. It could occur when an unprivileged user attempts to check if the PPC hardware supports Transactional Memory(KVM_CAP_PPC_HTM). An unprivileged user could use this flaw to crash the kernel resulting in DoS scenario. Upstream patch: --------------- -> https://git.kernel.org/linus/ac64115a66c18c01745bbd3c47a36b124e5fd8c0 Reference: ---------- -> http://www.openwall.com/lists/oss-security/2017/11/06/6
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1510400]
Statement: This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2.
This is fixed with the 4.13.11 stable update for Fedora.