readykernel-patch-30.15-24.0-1.vl7

A vulnerability was found in the implementation of vxlan interfaces in the Linux kernel. A privileged user inside a container was able to trigger a use-after-free in vxlan_dellink() function with a special sequence of operations with vxlan interfaces, which could result in a system crash or could possibly have other unspecified impact.

A vulnerability was found in the signal handling in the Linux kernel. A local unprivileged user may cause a kernel crash (general protection fault) in cleanup_timers() function by using rt_tgsigqueueinfo() system call with a specially crafted set of arguments.

Kernel crash (NULL pointer dereference) in list_lru_destroy().

When memcgroup reached memory limits, kernel may have entered an endless loop in try_charge(), and deadlocked.