diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2010-10-08 14:05:33 +0000 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2010-10-08 14:05:33 +0000 |
commit | 852d2632026ea136e329215f06722ddc9dfda5b3 (patch) | |
tree | 8f4df0a651c8cea9fe8939c25431bdebe8d33d2a /retired/CVE-2010-3079 | |
parent | 4beb8b846580e0d81046cb6ea20812fe621b9e35 (diff) |
retire issue
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1993 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired/CVE-2010-3079')
-rw-r--r-- | retired/CVE-2010-3079 | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2010-3079 b/retired/CVE-2010-3079 new file mode 100644 index 00000000..26ec8c30 --- /dev/null +++ b/retired/CVE-2010-3079 @@ -0,0 +1,15 @@ +Candidate: CVE-2010-3079 +Description: + kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when debugfs is enabled, + does not properly handle interaction between mutex possession and llseek operations, + which allows local users to cause a denial of service (outage of all function tracing + files) via an lseek call on a file descriptor associated with the set_ftrace_filter file. +References: + 9c55cb12c1c172e2d51e85fbb5a4796ca86b77e7 +Notes: +Bugs: +upstream: released (2.6.35.5) +2.6.32-upstream-stable: released (2.6.32.22) +linux-2.6: released (2.6.32-24) +2.6.26-lenny-security: N/A (Introduced in 2.6.30 (8fc0c701), ftrace not present anyway) +2.6.32-squeeze-security: released (2.6.32-24) |