The LLC subsystem in the Linux kernel does not ensure that a certain destructor exists in required circumstances, which allows local users to cause a denial of service (BUG_ON) or possibly have unspecified other impact via crafted system calls.
wrong reference to oss-sec.
correct one is
(In reply to Vasily Averin from comment #1)
> wrong reference to oss-sec.
> correct one is
Thanks, you are obviously right. Updated.
This was fixed for Fedora in the 4.9.13 kernels.
This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and MRG-2, as the kernel module 'llc2.ko' with this security flaw is not shipped with the products listed.