Denial Of Service (DoS)

2020-04-1000:25:18

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

JSON

kernel is vulnerable to denial of service (DoS). The vulnerability exists as a flaw was found in the Linux kernel setrlimit system call, when setting RLIMIT_CPU to a certain value. This could allow a local unprivileged user to bypass the CPU time limit.

CPENameOperatorVersion
kerneleq2.6.18__8.1.14.el5
kerneleq2.6.18__8.1.3.el5
kerneleq2.6.18__92.1.1.el5
kerneleq2.6.18__8.1.3.lspp.80.el5
kerneleq2.6.18__8.1.8.el5
kerneleq2.6.18__53.1.4.el5
kerneleq2.6.18__53.1.19.el5
kerneleq2.6.18__8.1.3.lspp.81.el5
kerneleq2.6.18__53.1.21.el5
kerneleq2.6.18__8.1.4.el5

Name	Operator	Version
kernel	eq	2.6.18__8.1.14.el5
kernel	eq	2.6.18__8.1.3.el5
kernel	eq	2.6.18__92.1.1.el5
kernel	eq	2.6.18__8.1.3.lspp.80.el5
kernel	eq	2.6.18__8.1.8.el5
kernel	eq	2.6.18__53.1.4.el5
kernel	eq	2.6.18__53.1.19.el5
kernel	eq	2.6.18__8.1.3.lspp.81.el5
kernel	eq	2.6.18__53.1.21.el5
kernel	eq	2.6.18__8.1.4.el5