Linux Kernel Comparison Error in get_nodes() Lets Local Users Deny Service
|
|
SecurityTracker Alert ID: 1015752 |
|
SecurityTracker URL: http://securitytracker.com/id/1015752
|
|
CVE Reference:
CVE-2006-0557
(Links to External Site)
|
Date: Mar 10 2006
|
Impact:
Denial of service via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in Linux Kernel. A local user can cause denial of service conditions.
A local user can call the get_nodes() function with specially crafted values to cause denial of service conditions. If maxnodes is set to between ((-2 * (BITS_PER_LONG - 1) and 0, the vulnerability can be triggered.
The vulnerability resides in 'mm/mempolicy.c'.
|
Impact:
A local user can cause the kernel to crash.
|
Solution:
The vendor has issued a fix, available at:
http://linux.bkbits.net:8080/linux-2.6/cset@43fa9051sxog2Snggt2j_-aUDTdMwA
|
Vendor URL: www.kernel.org/ (Links to External Site)
|
Cause:
Input validation error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Fri, 10 Mar 2006 10:43:05 -0500
Subject: Linux kernel vulnerability
|
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=184510
Red Hat reported:
Mike O'Connor noted to vendor-sec that the following commit fixes a local DoS
where an unprivileged user calls get_nodes with maxnodes set to between between
((-2 * (BITS_PER_LONG - 1) and 0.
Fixed by
http://linux.bkbits.net:8080/linux-2.6/cset@43f64992qvJ8Nep24rdzy0AROhhGiw
but then corrected to
http://linux.bkbits.net:8080/linux-2.6/cset@43fa9051sxog2Snggt2j_-aUDTdMwA
CVE-2006-0557
|
|
