A race condition was found between between mmget_not_zero()/get_task_mm() when core dumping tasks. A local attacker is able to exploit race condition where locking of semaphore would allow an attacker to leak kernel memory to userspace. Upstream patch: https://marc.info/?l=linux-mm&m=155355419911404&w=2
Acknowledgments: Name: Andrea Arcangeli (Red Hat Engineering)
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1696078]
Note: CVE-2019-11599 was kept and CVE-2019-3892 REJECTed as reservation duplicate of CVE-2019-11599: https://seclists.org/oss-sec/2019/q2/77 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3892
*** This bug has been marked as a duplicate of bug 1705937 ***
Statement: This flaw was found to be a duplicate of CVE-2019-11599. Please see https://access.redhat.com/security/cve/CVE-2019-11599 for information about affected products and security errata.