Bug 1534650 - kernel: Race condition in ALSA sequencer ioctls may lead to dead lock or use-after-free
Summary: kernel: Race condition in ALSA sequencer ioctls may lead to dead lock or use-...
Keywords:
Status: CLOSED DUPLICATE of bug 1535315
Alias: None
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1534652
Blocks: 1534654
TreeView+ depends on / blocked
 
Reported: 2018-01-15 16:46 UTC by Adam Mariš
Modified: 2023-05-12 20:57 UTC (History)
47 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2018-01-22 15:56:41 UTC
Embargoed:

Attachments (Terms of Use)

Description Adam Mariš 2018-01-15 16:46:39 UTC 
It was found that ALSA sequencer ioctls have no protection against racy calls while the concurrent operations may lead to interfere with each other. For example, the concurrent calls of setting client pool with a combination of write calls may lead to either the unkillable dead-lock or UAF.

Upstream patch:

https://github.com/torvalds/linux/commit/b3defb791b26ea0683a93a4f49c77ec45ec96f10
Comment 1 Adam Mariš 2018-01-15 16:49:10 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1534652]
Comment 3 Justin M. Forbes 2018-01-17 12:49:51 UTC 
This seems to be the same bug and fix as 1535315
Comment 4 Vladis Dronov 2018-01-22 15:56:41 UTC 
indeed, thanks for noticing. closing this as a duplicate.

*** This bug has been marked as a duplicate of bug 1535315 ***
Note You need to log in before you can comment on or make changes to this bug.