FreeBSD vm_map.c Memory Exhaustion DoS

2004-03-23T00:00:00
ID OSVDB:5937
Type osvdb
Reporter Tim Robbins(tjr@freebsd.org)
Modified 2004-03-23T00:00:00

Description

Vulnerability Description

FreeBSD contains a flaw that may allow a local denial of service. The issue is triggered when a user allocates an unbounded amount of wired memory, and will result in loss of availability for the platform. The issue is due to the kernel copying vm_exitingcnt to the new vmspace in vmspace_exec().

Solution Description

Upgrade to version 5.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

FreeBSD contains a flaw that may allow a local denial of service. The issue is triggered when a user allocates an unbounded amount of wired memory, and will result in loss of availability for the platform. The issue is due to the kernel copying vm_exitingcnt to the new vmspace in vmspace_exec().

References:

Vendor URL: http://www.freebsd.org/ Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0229.html Mail List Post: http://lists.freebsd.org/pipermail/cvs-src/2004-March/020930.html