oss-sec mailing list archives

Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads

From: Josh Bressers <bressers () redhat com>
Date: Mon, 22 Nov 2010 11:32:40 -0500 (EST)

Please use CVE-2010-4243

Thanks.

-- 
    JB


----- "Eugene Teo" <eugene () redhat com> wrote:

This is the OOM dodging issue that can be triggered with Brad's 
reproducer at http://grsecurity.net/~spender/64bit_dos.c. Written
in the comments: "The second bug here is that the memory usage
explodes 
within the kernel from a single 128k allocation in userland The 
explosion of memory isn't accounted for by any task so it won't be 
terminated by the OOM killer."

I don't recall seeing a CVE name assigned to this, so please assign
one. 
Upstream is still attempting to fix this.

https://bugzilla.redhat.com/show_bug.cgi?id=625688#c0

Thanks, Eugene

Current thread:

CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads Eugene Teo (Nov 22)
- Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads Josh Bressers (Nov 22)