'Re: [oss-security] CVE request: kernel: mm: mem allocated invisible'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request: kernel: mm: mem allocated invisible
From:       Josh Bressers <bressers () redhat ! com>
Date:       2010-11-22 16:32:40
Message-ID: 224296305.115231290443560699.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]

Please use CVE-2010-4243

Thanks.

-- 
    JB


----- "Eugene Teo" <eugene@redhat.com> wrote:

> This is the OOM dodging issue that can be triggered with Brad's 
> reproducer at http://grsecurity.net/~spender/64bit_dos.c. Written
> in the comments: "The second bug here is that the memory usage
> explodes 
> within the kernel from a single 128k allocation in userland The 
> explosion of memory isn't accounted for by any task so it won't be 
> terminated by the OOM killer."
> 
> I don't recall seeing a CVE name assigned to this, so please assign
> one. 
> Upstream is still attempting to fix this.
> 
> https://bugzilla.redhat.com/show_bug.cgi?id=625688#c0
> 
> Thanks, Eugene
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic