oss-sec mailing list archives
cve-request: linux kernel - memory leak in xfs attribute mechanism.
From: Wade Mealing <wmealing () redhat com>
Date: Wed, 30 Nov 2016 19:10:43 +1100
Gday, I'd like to request a CVE for the following flaw found in the XFS attribute management code where over-eager error handling could create a memory leak (not in information leak) and perhaps with enough dedication and patience a local attacker could eventually leak available system memory, creating a DOS attack. As this same flaw style appears in two functions, this could have one or two CVE's, I'll leave it up to the fine assigners at mitre to decide that. Thanks, Wade Mealing Red Hat Product Security Upstream: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2e83b79b2d6c78bf1b4aa227938a214dcbddc83f
Current thread:
- cve-request: linux kernel - memory leak in xfs attribute mechanism. Wade Mealing (Nov 30)
- Re: cve-request: linux kernel - memory leak in xfs attribute mechanism. cve-assign (Nov 30)