0 Replies Latest reply on May 16, 2016 8:26 AM by cap_

    What is the status of addressing CVE-2016-4565

    cap_

      This CVE is quite important as it affects (afaict) all or nearly all Infiniband stacks (from distribution specific, to OFED, to MOFED).

       

      Status is that the public PoC allows writing of arbitrary kernel memory by a local user if IB is loaded.

       

      When will an updated MOFED be available?

       

      References:

      https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6bd18f57aad1a2d1ef40e646d03ed0f2515c9e3

      Bug 2595 – IB/security: Restrict use of the write() interface

      https://bugzilla.redhat.com/show_bug.cgi?id=1334217

      http://marc.info/?l=linux-rdma&m=146281689725834&w=2