CVE-2007-6712

Priority
Medium
Description
Integer overflow in the hrtimer_forward function (hrtimer.c) in Linux
kernel 2.6.21-rc4, when running on 64-bit systems, allows local users to
cause a denial of service (infinite loop) via a timer with a large expiry
value, which causes the timer to always be expired.
Ubuntu-Description
Johannes Bauer discovered that the 64bit kernel did not correctly handle
hrtimer updates. A local attacker could request a large expiration
value and cause the system to hang, leading to a denial of service.
References
Notes
kees> fixed upstream in two ways (see patch list)
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:not-affected
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released
Ubuntu 8.04 LTS (Hardy Heron):not-affected
Patches:
Patch:http://git.kernel.org/?p=linux/kernel/git/chris/linux-2.6.git;a=commitdiff;h=13788ccc41ceea5893f9c747c59bc0b28f2416c2
Upstream:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=5a7780e725d1bb4c3094fcc12f1c5c5faea1e988
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:28 UTC (commit 5347)