kernel: Memory leaks in xfs_attr_list.c error paths

🗓️ 01 Aug 2017 14:13:37Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 4 Views

Memory leaks in XFS attribute list code may exhaust memory under docker with xfs overlay2.

Reporter	Title	Published	Views	Family All 133
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel	16 Jun 201822:04	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM	18 Jun 201801:40	–	ibm
Tenable Nessus	CentOS 7 : kernel (CESA-2017:1842) (Stack Clash)	25 Aug 201700:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1496)	13 May 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1516)	13 May 201900:00	–	nessus
Tenable Nessus	Oracle Linux 7 : kernel (ELSA-2017-1842-1) (Stack Clash)	16 Aug 201700:00	–	nessus
Tenable Nessus	Oracle Linux 7 : kernel (ELSA-2017-1842)	9 Aug 201700:00	–	nessus
Tenable Nessus	Oracle Linux 7 : ELSA-2017-1842-1: / kernel (ELSA-2017-18421)	7 Sep 202300:00	–	nessus
Tenable Nessus	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3606)	21 Aug 201700:00	–	nessus
Tenable Nessus	Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2017-3607)	21 Aug 201700:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	x86_64	kernel-rt	0:3.10.0-693.rt56.617.el7	kernel-rt-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug	0:3.10.0-693.rt56.617.el7	kernel-rt-debug-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-debuginfo	0:3.10.0-693.rt56.617.el7	kernel-rt-debug-debuginfo-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-devel	0:3.10.0-693.rt56.617.el7	kernel-rt-debug-devel-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-kvm	0:3.10.0-693.rt56.617.el7	kernel-rt-debug-kvm-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-kvm-debuginfo	0:3.10.0-693.rt56.617.el7	kernel-rt-debug-kvm-debuginfo-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debuginfo	0:3.10.0-693.rt56.617.el7	kernel-rt-debuginfo-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debuginfo-common-x86_64	0:3.10.0-693.rt56.617.el7	kernel-rt-debuginfo-common-x86_64-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-devel	0:3.10.0-693.rt56.617.el7	kernel-rt-devel-0:3.10.0-693.rt56.617.el7.x86_64.rpm
Red Hat Enterprise Linux	7	any	kernel-rt-doc	0:3.10.0-693.rt56.617.el7.noarch	kernel-rt-doc-0:3.10.0-693.rt56.617.el7.noarch.noarch.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2016-9685
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-9685
cve	www.cve.org/CVERecord

13 May 2026 01:43Current

6.8Medium risk

Vulners AI Score6.8

CVSS 24.9

CVSS 35.5

EPSS0.00393

memory leaks xfs attribute list docker overlay2 denial of service