[PATCH 0/1][SRU][T] CVE-2017-18360: Local DoS in io_ti serial driver
Tyler Hicks
tyhicks at canonical.com
Mon Feb 11 17:40:31 UTC 2019
In change_port_settings in drivers/usb/serial/io_ti.c in the Linux kernel
before 4.11.3, local users could cause a denial of service by
division-by-zero in the serial device layer by trying to set very high baud
rates.
- https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-18360.html
Clean cherry pick to Trusty. Build logs are clean. I was able to ensure that
the module loads but don't have the hardware to test the code change.
Tyler
Johan Hovold (1):
USB: serial: io_ti: fix div-by-zero in set_termios
drivers/usb/serial/io_ti.c | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
--
2.7.4
More information about the kernel-team
mailing list