CVE-2008-3535

Priority
Medium
Description
Off-by-one error in the iov_iter_advance function in mm/filemap.c in the
Linux kernel before 2.6.27-rc2 allows local users to cause a denial of
service (system crash) via a certain sequence of file I/O operations with
readv and writev, as demonstrated by testcases/kernel/fs/ftest/ftest03 from
the Linux Test Project.
Ubuntu-Description
It was discovered that the readv/writev functions did not correctly
handle certain sequences of file operations. A local attacker could
exploit this to crash the system, leading to a denial of service.
References
Assigned-to
smb_tp
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:pending
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-21.43)
Patches:
Upstream:94ad374a0751f40d25e22e036c37f7263569d24c
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:59 UTC (commit 5347)