FreeBSD -- memory leak in sandboxed namei lookup

2014-10-21T00:00:00
ID 73964EAC-6007-11E6-A6C3-14DAE9D210B8
Type freebsd
Reporter FreeBSD
Modified 2014-10-21T00:00:00

Description

Problem Description: The namei facility will leak a small amount of kernel memory every time a sandboxed process looks up a nonexistent path name. Impact: A remote attacker that can cause a sandboxed process (for instance, a web server) to look up a large number of nonexistent path names can cause memory exhaustion.