The Linux kernel has an undefined behaviour when an argument of INT_MIN is passed to the kernel/signal.c:kill_something_info() function. A local attacker may be able to exploit this to cause a denial of service. References: https://marc.info/?l=linux-mm&m=149667084508525&w=2 https://news.ycombinator.com/item?id=2972021 An upstream patch: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4ea77014af0d6205b05503d1c7aac6eace11d473
Note: This bug is present in certain Red Hat products, but the security impact is absent. Therefore, we do not consider this bug to be a security flaw.