A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.
The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 4.7 (including) | 4.9.163 (excluding) |
Linux_kernel | Linux | 4.14 (including) | 4.14.106 (excluding) |
Linux_kernel | Linux | 4.19 (including) | 4.19.28 (excluding) |
Linux_kernel | Linux | 4.20 (including) | 4.20.15 (excluding) |
Linux_kernel | Linux | 5.0 (including) | 5.0.1 (excluding) |
Linux_kernel | Linux | 5.1-rc1 (including) | 5.1-rc1 (including) |