ulp/sdp/sdp_proc.c in the ib_sdp module (aka ib_sdp.ko) in the ofa_kernel package in the InfiniBand driver implementation in OpenFabrics Enterprise Distribution (OFED) prior to 1.5.3 does not properly handle certain non-array variables, which allows local users to cause a denial of service (stack memory corruption and system crash) by reading the /proc/net/sdpstats file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openfabrics enterprise distribution 1.5.1 |
||
openfabrics enterprise distribution 1.4.1 |
||
openfabrics enterprise distribution 1.4.2 |
||
openfabrics enterprise distribution 1.3.1 |
||
openfabrics enterprise distribution 1.4 |
||
openfabrics enterprise distribution 1.1 |
||
openfabrics enterprise distribution 1.3.2 |
||
openfabrics enterprise distribution 1.3 |
||
openfabrics enterprise distribution |
||
openfabrics enterprise distribution 1.5 |
||
openfabrics enterprise distribution 1.2.5 |