ru.linux

 
 - RU.LINUX ---------------------------------------------------------------------
 From : Pavel Vasilyev                       2:5020/1042.65 30 Nov 2005  02:45:14
 To : All
 Subject : DoS
 -------------------------------------------------------------------------------- 
 

 
 
 TITLE:
 Linux Kernel Multiple Denial of Service Vulnerabilities
 CRITICAL:
 Not critical
 
 IMPACT:
 DoS
 
 WHERE:
 Local system
 
 OPERATING SYSTEM:
 Linux Kernel 2.6.x
 DESCRIPTION:
 Some vulnerabilities have been reported in the Linux Kernel, which
 potentially can be exploited by malicious, local users to cause a DoS
 (Denial of Service).
 
 1) An error in the auto-reap of child processes that have ptrace
 attached can lead to dangling ptrace references. This may be
 exploited by local users to cause a kernel crash.
 
 2) The use of "printk()" in the "time_out_leases()" function in
 "/fs/locks.c" can consume a large amount of kernel log space. This
 can be exploited by local users to cause a DoS by generating a large
 number of broken leases.
 
 The vulnerabilities have been reported in the 2.6 kernel branch.
 
 SOLUTION:
 The vulnerabilities have been fixed in version 2.6.15-rc3.
 
 PROVIDED AND/OR DISCOVERED BY:
 1) Oleg Nesterov
 2) Avi Kivity
 
 ORIGINAL ADVISORY:
 Kernel.org:
 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.15-rc3
 http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=
 7ed0175a4 62c4c30f6df6fac1cccac058f997739
 http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=
 f3a9388e4 ebea57583272007311fffa26ebbb305
  Memento morri Alexandra!
 --- GoldED+ 1.1.5 (Linux 2.6.14.3 i686)
  * Origin: Ща как дам тебе в импичьмент, так в дефолт и уйдешь (2:5020/1042.65)
 
 

Вернуться к списку тем, сортированных по: возрастание даты  уменьшение даты  тема  автор