An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through 5.9.9. Local attackers on systems with the speakup driver could cause a local denial of service attack. This occurs because of an invalid free when the line discipline is used more than once. References: https://www.openwall.com/lists/oss-security/2020/11/19/3 http://www.openwall.com/lists/oss-security/2020/11/19/5 Upstream patch: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d4122754442799187d5d537a9c039a49a67e57f1
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1899986]
*** Bug 1901723 has been marked as a duplicate of this bug. ***