PSIRT Advisory

Linux Kernel tty_ioctl Vulnerability

Summary

A race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel may allow local users to obtain sensitive information from kernel memory or cause a denial of service.

Impact

Denial of service, Information disclosure

Affected Products

FortiOS 5.4.0 to 5.4.3

Solutions

Upgrade to FortiOS version

  • 5.4.4 or
  • 5.6.0