The hashbin_delete function in net/irda/irqueue.c in the Linux kernel improperly manages lock dropping, which allows local users to cause a denial of service (deadlock) via crafted operations on IrDA devices. Upstream patch: https://github.com/torvalds/linux/commit/4c03b862b12f980456f9de92db6d508a4999b788 References: http://seclists.org/oss-sec/2017/q1/5246
Statement: This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and MRG-2 as the code with the flaw is not present in the products listed.