Vulnerabilities

CVE-2008-2372

by Fred · 02/07/2008

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service (memory consumption) via a large number of calls to the get_user_pages function, which lacks a ZERO_PAGE optimization and results in allocation of "useless newly zeroed pages."

Date published : 2008-07-02

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=89f5b7da2a6bad2e84670422ab8192382a5aeb9f

http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.9

Related

Tags: Cybersecurity Alert