fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.
http://openwall.com/lists/oss-security/2011/03/02/1
http://openwall.com/lists/oss-security/2011/03/02/2
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
75879 | openSUSE Security Update : kernel (openSUSE-SU-2011:0416-1) | Nessus | SuSE Local Security Checks | high |
75554 | openSUSE Security Update : kernel (openSUSE-SU-2011:0399-1) | Nessus | SuSE Local Security Checks | high |
68417 | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2016) | Nessus | Oracle Linux Local Security Checks | high |
65103 | Ubuntu 10.04 LTS / 10.10 : linux-mvl-dove vulnerabilities (USN-1093-1) | Nessus | Ubuntu Local Security Checks | high |
63986 | RHEL 6 : kernel (RHSA-2011:0883) | Nessus | Red Hat Local Security Checks | high |
61041 | Scientific Linux Security Update : kernel on SL6.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | medium |
56192 | USN-1204-1 : linux-fsl-imx51 vulnerabilities | Nessus | Ubuntu Local Security Checks | high |
56190 | USN-1202-1 : linux-ti-omap4 vulnerabilities | Nessus | Ubuntu Local Security Checks | high |
55785 | Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1187-1) | Nessus | Ubuntu Local Security Checks | high |
55591 | Ubuntu 11.04 : linux vulnerabilities (USN-1167-1) | Nessus | Ubuntu Local Security Checks | high |
55454 | Ubuntu 10.10 : linux vulnerabilities (USN-1160-1) | Nessus | Ubuntu Local Security Checks | high |
55104 | Ubuntu 10.04 LTS : linux, linux-ec2 vulnerabilities (USN-1141-1) | Nessus | Ubuntu Local Security Checks | high |
54590 | RHEL 6 : kernel (RHSA-2011:0542) | Nessus | Red Hat Local Security Checks | high |
53740 | openSUSE Security Update : kernel (openSUSE-SU-2011:0346-1) | Nessus | SuSE Local Security Checks | high |
53571 | SuSE 11.1 Security Update : Linux kernel (SAT Patch Number 4376) | Nessus | SuSE Local Security Checks | high |
53570 | SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 4384 / 4386) | Nessus | SuSE Local Security Checks | high |