Summary: | kernel: brk discards top byte of addresses on aarch64, causing heap corruption in glibc malloc (CVE-2020-9391) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Kernel | Assignee: | Gentoo Kernel Security <security-kernel> |
Status: | RESOLVED UPSTREAM | ||
Severity: | trivial | ||
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | ARM64 | ||
OS: | Linux | ||
URL: | https://www.openwall.com/lists/oss-security/2020/02/25/6 | ||
Whiteboard: | ~3 [upstream/ebuild] | ||
Package list: | Runtime testing required: | --- |
Description
Sam James
2020-03-01 01:20:46 UTC
Only affecting 5.4+ We don't stabilize kernel sources for aarch64. |