oss-sec mailing list archives

CVE request -- Linux kernel: mm/hotplug: failure in propagating hot-added memory to other nodes

From: Petr Matousek <pmatouse () redhat com>
Date: Sat, 10 Nov 2012 22:36:59 +0100

A NULL pointer dereference flaw has been found in the way a new node's
hot-added memory is propagated to other nodes zonelists. An unprivileged
local user can use this flaw to crash the system.

Upstream fix:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=08dff7b7d629807dbb1f398c68dd9cd58dd657a1

References:
https://bugzilla.redhat.com/show_bug.cgi?id=875374

Thanks,
-- 
Petr Matousek / Red Hat Security Response Team

Current thread:

CVE request -- Linux kernel: mm/hotplug: failure in propagating hot-added memory to other nodes Petr Matousek (Nov 10)
- Re: CVE request -- Linux kernel: mm/hotplug: failure in propagating hot-added memory to other nodes Kurt Seifried (Nov 10)
  - Re: CVE request -- Linux kernel: mm/hotplug: failure in propagating hot-added memory to other nodes Marcus Meissner (Nov 13)
    - Re: CVE request -- Linux kernel: mm/hotplug: failure in propagating hot-added memory to other nodes Petr Matousek (Nov 13)