Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 171888 (CVE-2006-7051) - Kernel: sys_timer_create() local DoS (CVE-2006-7051)
Summary: Kernel: sys_timer_create() local DoS (CVE-2006-7051)
Status: RESOLVED FIXED
Alias: CVE-2006-7051
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://cve.mitre.org/cgi-bin/cvename....
Whiteboard: [linux < 2.6.23][gp < 2.6.23-1][gento...
Keywords:
Depends on:
Blocks:
 
Reported: 2007-03-23 07:22 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified: 2013-09-05 02:54 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2007-03-23 07:22:29 UTC
The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process' memory.
Comment 1 unnamedrambler 2008-03-08 17:39:09 UTC
metadata:
[linux < 2.6.23]  d02479bdeb1c9b037892061cdcf4e730183391fa
[gp < 2.6.23-1]
[gentoo <2.6.23]