CVE-2008-2372

NONECVSS 0.0

0.0

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service (memory consumption) via a large number of calls to the get_user_pages function, which lacks a ZERO_PAGE optimization and results in allocation of "useless newly zeroed pages."

🔗 References (40)

secalert@redhathttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=89f5b7da2a6bad2e84670422ab8192382a5aeb9f
secalert@redhathttp://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.9
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00007.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00009.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00012.html
secalert@redhathttp://new-ubuntu-news.blogspot.com/2008/06/re-pending-stable-kernel-security_25.html
secalert@redhathttp://secunia.com/advisories/30901
secalert@redhathttp://secunia.com/advisories/30982
secalert@redhathttp://secunia.com/advisories/31202
secalert@redhathttp://secunia.com/advisories/31628
secalert@redhathttp://secunia.com/advisories/32393
secalert@redhathttp://secunia.com/advisories/32485
secalert@redhathttp://wiki.rpath.com/wiki/Advisories:rPSA-2008-0207
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2008-0585.html
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2008-0957.html

Is Your Infrastructure Affected by CVE-2008-2372?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-2372

📅 Published

🔄 Last Modified

🔗 References (40)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-2372?