Description
A flaw was found in the way certain interfaces of the Linux kernel's
Infiniband subsystem used write() as bi-directional ioctl() replacement, which
could lead to insufficient memory security checks when being invoked using the
splice() system call. A local unprivileged user on a system with either
Infiniband hardware present or RDMA Userspace Connection Manager Access module
explicitly loaded, could use this flaw to escalate their privileges on the
system. (CVE-2016-4565, Important)