Inappropriate Locking Approach in Linux Kernel Filesystem Implementation Allows Denial of Service via AIO Operations

Inappropriate Locking Approach in Linux Kernel Filesystem Implementation Allows Denial of Service via AIO Operations

CVE-2014-8172 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The filesystem implementation in the Linux kernel before 3.13 performs certain operations on lists of files with an inappropriate locking approach, which allows local users to cause a denial of service (soft lockup or system crash) via unspecified use of Asynchronous I/O (AIO) operations.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.