[kernel-sec-discuss] r607 - active
Martin Pitt
mpitt at costa.debian.org
Tue Oct 10 09:34:55 UTC 2006
Author: mpitt
Date: 2006-10-10 09:34:55 +0000 (Tue, 10 Oct 2006)
New Revision: 607
Modified:
active/CVE-2006-4811
Log:
flesh out CVE-2006-4811
Modified: active/CVE-2006-4811
===================================================================
--- active/CVE-2006-4811 2006-10-07 12:02:38 UTC (rev 606)
+++ active/CVE-2006-4811 2006-10-10 09:34:55 UTC (rev 607)
@@ -1,14 +1,21 @@
Candidate: CVE-2006-4811
References:
+ http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=c7546f8f03f5a4fa612605b6be930234d6026860
Description: hugetlb dos
Ubuntu-Description:
-Notes:
+ David Gibson discovered a Denial of Service vulnerability in the
+ unmap_hugepage_area() function. By calling mmap() in a special way, a
+ local user could exploit this to crash the kernel.
+Notes:
+ - Pretty old fix, applied upstream in 2.6.11 or 2.6.12.
+ - 2.6.10 and older have function in arch-specific
+ arch/*/mm/hugetlbpage.c, thus requires some manual porting work
Bugs:
upstream:
linux-2.6:
-2.6.8-sarge-security:
+2.6.8-sarge-security: needed
2.4.27-sarge-security: needed
-2.6.10-hoary-security:
-2.6.12-breezy-security:
-2.6.15-dapper-security:
-2.6.17-edgy:
+2.6.10-hoary-security: needed
+2.6.12-breezy-security: released
+2.6.15-dapper-security: released
+2.6.17-edgy: released
More information about the kernel-sec-discuss
mailing list