Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 145515 - Kernel: sys_perfmonctl() file descriptor reference count issue (CVE-2006-3741)
Summary: Kernel: sys_perfmonctl() file descriptor reference count issue (CVE-2006-3741)
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://git.kernel.org/?p=linux/kernel...
Whiteboard: [linux <2.6.16.30] [linux >=2.6.17 <2...
Keywords:
Depends on:
Blocks:
 
Reported: 2006-08-29 12:24 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified: 2009-08-22 12:27 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2006-08-29 12:24:03 UTC 
Stephane Eranian(HP) discovered a security problem with perfmon2.0 
in mainline kernel. Under certain circumstances, the perfmonctl() 
system call may not correctly manage the file descriptor reference 
count. As a consequence, the system may run out of file structure.
Comment 1 Raphael Marichez (Falco) (RETIRED) gentoo-dev 2006-10-06 13:09:19 UTC 
This one might be related with :
http://secunia.com/advisories/22279/
(or at least the 1st part of this Secunia Adv)
Comment 2 Harlan Lieberman-Berg (RETIRED) gentoo-dev 2006-12-15 08:14:05 UTC 
xen-sources, please bump to 2.6.18 in ~arch. You are in danger of hardmasking from 144820, same date applies here.

CVE is public, unlocking bug.
Comment 3 Harlan Lieberman-Berg (RETIRED) gentoo-dev 2007-02-13 16:15:26 UTC 
Xen, are you still vulnerable?
Comment 4 Andrew Ross (RETIRED) gentoo-dev 2007-02-14 08:32:33 UTC 
According to http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3741, Itanium is the only arch affected by this.
Comment 5 Harlan Lieberman-Berg (RETIRED) gentoo-dev 2007-02-23 18:14:00 UTC 
In that case, closing.