CVE - CVE-2011-2484

CVE-ID
CVE-2011-2484	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service (memory and CPU consumption), and bypass the OOM Killer, via a crafted application.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:48383 URL:http://www.securityfocus.com/bid/48383 MISC:[linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode URL:http://lists.openwall.net/linux-kernel/2011/06/16/605 MISC:[oss-security] 20110622 CVE request: kernel: taskstats local DoS URL:http://openwall.com/lists/oss-security/2011/06/22/1 MISC:[oss-security] 20110622 Re: CVE request: kernel: taskstats local DoS URL:http://openwall.com/lists/oss-security/2011/06/22/2 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=715436 URL:https://bugzilla.redhat.com/show_bug.cgi?id=715436 MISC:kernel-taskstats-dos(68150) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/68150
Assigning CNA
Red Hat, Inc.
Date Record Created
20110615	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20110615)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)