oss-sec mailing list archives
CVE request -- Linux kernel: selinux: rate-limit unrecognized netlink message warnings in selinux_nlmsg_perm()
From: Vladis Dronov <vdronov () redhat com>
Date: Wed, 4 Nov 2015 10:11:16 -0500 (EST)
It was found that the kernel produces unlimited number of warning messages in case certain malformed NETLINK packets are received. A local, unprivileged user could generate such packets unlimitedly and potentially flood the kernel and the system log with excessive warning messages. Upstream patch proposal: http://article.gmane.org/gmane.linux.kernel.lsm/25958 References: https://bugzilla.redhat.com/show_bug.cgi?id=1278005 Thanks, Vladis
Current thread:
- CVE request -- Linux kernel: selinux: rate-limit unrecognized netlink message warnings in selinux_nlmsg_perm() Vladis Dronov (Nov 04)