CVE-2008-2372 — Vulnetix

CVE-2008-2372 PUBLISHED

Reported by redhat · Published July 2, 2008

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service (memory consumption) via a large number of calls to the get_user_pages function, which lacks a ZERO_PAGE optimization and results in allocation of "useless newly zeroed pages."

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, n/a, n/a

Timeline

Jul 2, 2008 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score

References

x_refsource_CONFIRM
32485 third-party-advisoryx_refsource_SECUNIA
SUSE-SA:2008:038 vendor-advisoryx_refsource_SUSE
SUSE-SA:2008:035 vendor-advisoryx_refsource_SUSE
32393 third-party-advisoryx_refsource_SECUNIA
[linux-kernel] 20080430 Re: Page Faults slower in 2.6.25-rc9 than 2.6.23 mailing-listx_refsource_MLIST
RHSA-2008:0957 vendor-advisoryx_refsource_REDHAT
oval:org.mitre.oval:def:9383 vdb-entrysignaturex_refsource_OVAL
30982 third-party-advisoryx_refsource_SECUNIA
USN-659-1 vendor-advisoryx_refsource_UBUNTU
30901 third-party-advisoryx_refsource_SECUNIA
x_refsource_MISC
RHSA-2008:0585 vendor-advisoryx_refsource_REDHAT
SUSE-SA:2008:037 vendor-advisoryx_refsource_SUSE
x_refsource_CONFIRM
x_refsource_CONFIRM
x_refsource_CONFIRM
31628 third-party-advisoryx_refsource_SECUNIA
31202 third-party-advisoryx_refsource_SECUNIA
linux-kernel-getuserpages-dos(43550) vdb-entryx_refsource_XF

Open in Interactive Console →