The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Linux_kernel | Linux | 2.6.0 (including) | 2.6.33 (excluding) |
| Linux_kernel | Linux | 2.6.33-rc1 (including) | 2.6.33-rc1 (including) |
| Linux_kernel | Linux | 2.6.33-rc2 (including) | 2.6.33-rc2 (including) |
| Linux_kernel | Linux | 2.6.33-rc3 (including) | 2.6.33-rc3 (including) |
| Linux_kernel | Linux | 2.6.33-rc4 (including) | 2.6.33-rc4 (including) |
| Linux_kernel | Linux | 2.6.33-rc5 (including) | 2.6.33-rc5 (including) |
| MRG for RHEL-5 | RedHat | kernel-rt-0:2.6.24.7-161.el5rt | * |
| Red Hat Enterprise Linux 5 | RedHat | kernel-0:2.6.18-194.8.1.el5 | * |
| Linux | Ubuntu | devel | * |
| Linux | Ubuntu | hardy | * |
| Linux | Ubuntu | intrepid | * |
| Linux | Ubuntu | jaunty | * |
| Linux | Ubuntu | karmic | * |
| Linux | Ubuntu | lucid | * |
| Linux-source-2.6.15 | Ubuntu | dapper | * |
References
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=9f557cd8073104b39528794d44e129331ded649f
- http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html
- http://secunia.com/advisories/39830
- http://secunia.com/advisories/40645
- http://secunia.com/advisories/43315
- http://www.debian.org/security/2010/dsa-2053
- http://www.openwall.com/lists/oss-security/2010/03/03/1
- http://www.securityfocus.com/archive/1/516397/100/0/threaded
- http://www.securityfocus.com/bid/39569
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html
- http://www.vupen.com/english/advisories/2010/1857
- https://bugzilla.redhat.com/show_bug.cgi?id=567184
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=9f557cd8073104b39528794d44e129331ded649f
- http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html
- http://secunia.com/advisories/39830
- http://secunia.com/advisories/40645
- http://secunia.com/advisories/43315
- http://www.debian.org/security/2010/dsa-2053
- http://www.openwall.com/lists/oss-security/2010/03/03/1
- http://www.securityfocus.com/archive/1/516397/100/0/threaded
- http://www.securityfocus.com/bid/39569
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html
- http://www.vupen.com/english/advisories/2010/1857
- https://bugzilla.redhat.com/show_bug.cgi?id=567184
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10442