The following flaw was found in the Linux kernel: The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox. Upstream bug: https://bugzilla.kernel.org/show_bug.cgi?id=60533
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1272996]