A flaw was found in the Linux kernels implementation of biovecs in versions before 5.9-rc7. A zero-length biovec request issued by the block subsystem could cause the kernel to enter an infinite loop, causing a denial of service. This flaw allows a local attacker with basic privileges to issue requests to a block device, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | 5.8.13 (including) |
Linux_kernel | Linux | 5.9.0 (including) | 5.9.0 (including) |
Linux_kernel | Linux | 5.9.0-rc1 (including) | 5.9.0-rc1 (including) |
Linux_kernel | Linux | 5.9.0-rc2 (including) | 5.9.0-rc2 (including) |
Linux_kernel | Linux | 5.9.0-rc3 (including) | 5.9.0-rc3 (including) |
Linux_kernel | Linux | 5.9.0-rc4 (including) | 5.9.0-rc4 (including) |
Linux_kernel | Linux | 5.9.0-rc5 (including) | 5.9.0-rc5 (including) |
Linux_kernel | Linux | 5.9.0-rc6 (including) | 5.9.0-rc6 (including) |