Description: Jean Delvare has reported a security issue in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The problem is that the it87 and via686a hardware monitoring drivers create the sysfs file "alarms" with insecure permissions granting write access to the file. This can be exploited to exhaust all available CPU resources by writing to the file. Solution: Update to version 2.6.11.8.
*** Bug 91175 has been marked as a duplicate of this bug. ***
Fixed in genpatches-2.6-11.12 Fixed in gentoo-sources-2.6.11-r9
From Ubuntu's USN-131-1 The it87 and via686a hardware monitoring drivers created a sysfs file named "alarms" with write permissions, but they are not designed to be writeable. This allowed a local user to crash the kernel by attempting to write to these files. (CAN-2005-1369)
*** Bug 93669 has been marked as a duplicate of this bug. ***
CAN-2005-1368 has the same resolution (>= 2.6.11.8)
All fixed, closing.