New Search

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function and subsequently attempts to unlock a page that was not locked which allows local users to cause a denial of service (kernel BUG and system crash) as demonstrated by the fio I/O tool.

oval:org.mitre.oval:def:10547

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function and subsequently attempts to unlock a page that was not locked which allows local users to cause a denial of service (kernel BUG and system crash) as demonstrated by the fio I/O tool.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 5
  • Oracle Linux 5
  • CentOS Linux 5
Class:
vulnerability
Reference(s):
  • CVE-2008-4302
Product(s):