CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
15.7%
Memory leak in the inotify_init1 function in fs/notify/inotify/inotify_user.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory consumption) via vectors involving failed attempts to create files.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.36.1 | cpe:2.3:o:linux:linux_kernel:2.6.36.1:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.36.2 | cpe:2.3:o:linux:linux_kernel:2.6.36.2:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.36.3 | cpe:2.3:o:linux:linux_kernel:2.6.36.3:*:*:*:*:*:*:* |
ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a2ae4cc9a16e211c8a128ba10d22a85431f093ab
www.openwall.com/lists/oss-security/2010/11/24/11
bugzilla.redhat.com/show_bug.cgi?id=656830
github.com/torvalds/linux/commit/a2ae4cc9a16e211c8a128ba10d22a85431f093ab