From ${URL} : spender reported [1] a local DoS triggerable by unprivileged user when user namespaces are enabled (CONFIG_USER_NS). [1] https://twitter.com/grsecurity/status/364566062336978944 Reproducer: b836010000bb00000010cd80ebf2 is for(;;)unshare(1<<28);
CVE-2013-4205 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4205): Memory leak in the unshare_userns function in kernel/user_namespace.c in the Linux kernel before 3.10.6 allows local users to cause a denial of service (memory consumption) via an invalid CLONE_NEWUSER unshare call.
In 3.12 onwards