Lars T.'s Journal: Local DoS Vulnerability in Linux Kernel

2005-12-24 22:02:21 Local DoS Vulnerability in Linux Kernel (Linux,Security) (pending)

iDefense reports a local exploitation of a memory exhaustion vulnerability in Linux Kernel versions 2.4 and 2.6 that can allow attackers to cause a denial of service condition. Successful exploitation requires an attacker to have local access to an affected Linux system and can result in complete system denial of service. The system may not reboot after successful exploitation, requiring human interaction to be restored to a working state. Depending on available resources, systems with large amounts of physical memory may not be affected. A source patch is in the article.