An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack variable. This could allow an attacker to trigger a Denial of Service, exploitable if this driver is used on an architecture for which this stack/DMA interaction has security relevance.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 2.6.35 (including) | 4.4.198 (excluding) |
Linux_kernel | Linux | 4.5.0 (including) | 4.9.198 (excluding) |
Linux_kernel | Linux | 4.10 (including) | 4.14.151 (excluding) |
Linux_kernel | Linux | 4.15 (including) | 4.19.81 (excluding) |
Linux_kernel | Linux | 4.20 (including) | 5.3.8 (excluding) |