The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service (memory consumption) via a large number of calls to the get_user_pages function, which lacks a ZERO_PAGE optimization and results in allocation of "useless newly zeroed pages."
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2008-07-02 16:41
Updated : 2024-02-04 17:33
NVD link : CVE-2008-2372
Mitre link : CVE-2008-2372
CVE.ORG link : CVE-2008-2372
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-20
Improper Input Validation