fs/proc/root.c in the procfs implementation in the Linux kernel prior to 3.2 does not properly interact with CLONE_NEWPID clone system calls, which allows remote malicious users to cause a denial of service (reference leak and memory consumption) by making many connections to a daemon that uses PID namespaces to isolate clients, as demonstrated by vsftpd.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 3.1.2 |
||
linux linux kernel |
||
linux linux kernel 3.1.6 |
||
linux linux kernel 3.1.3 |
||
linux linux kernel 3.1.9 |
||
linux linux kernel 3.1.5 |
||
linux linux kernel 3.1.8 |
||
linux linux kernel 3.1.7 |
||
linux linux kernel 3.1.1 |
||
linux linux kernel 3.1.4 |