← voltar
CVE-2008-4307

CVE-2008-4307

EPSS 0.3%
Race condition in the do_setlk function in fs/nfs/file.c in the Linux kernel before 2.6.26 allows local users to cause a denial of service (crash) via vectors resulting in an interrupted RPC call that leads to a stray FL_POSIX lock, related to improper handling of a race between fcntl and close in the EINTR case.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git%3Ba=commit%3Bh=c4d7c402b788b73dc24f1e54a57f89d3dc5eb7bchttp://openwall.com/lists/oss-security/2009/01/13/1http://rhn.redhat.com/errata/RHSA-2009-0459.htmlhttp://rhn.redhat.com/errata/RHSA-2009-0473.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=456282http://secunia.com/advisories/34917http://secunia.com/advisories/34962http://secunia.com/advisories/34981http://secunia.com/advisories/35011http://secunia.com/advisories/35015http://secunia.com/advisories/37471https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7728