CVE-2009-0031
5.6 Medium
AI Score
Confidence
Low
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
9.3%
Memory leak in the keyctl_join_session_keyring function (security/keys/keyctl.c) in Linux kernel 2.6.29-rc2 and earlier allows local users to cause a denial of service (kernel memory consumption) via unknown vectors related to a “missing kfree.”
References
git2.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0d54ee1c7850a954026deec4cd4885f331da35cc
lists.opensuse.org/opensuse-security-announce/2009-02/msg00003.html
osvdb.org/51501
rhn.redhat.com/errata/RHSA-2009-0264.html
secunia.com/advisories/33858
secunia.com/advisories/34252
secunia.com/advisories/34394
secunia.com/advisories/34502
secunia.com/advisories/34762
secunia.com/advisories/34981
secunia.com/advisories/35011
support.avaya.com/elmodocs2/security/ASA-2009-114.htm
www.debian.org/security/2009/dsa-1749
www.debian.org/security/2009/dsa-1787
www.debian.org/security/2009/dsa-1794
www.openwall.com/lists/oss-security/2009/01/19/4
www.redhat.com/support/errata/RHSA-2009-0331.html
www.redhat.com/support/errata/RHSA-2009-0360.html
www.ubuntu.com/usn/usn-751-1
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11386
Social References
More
Related
5.6 Medium
AI Score
Confidence
Low
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
9.3%