Back to search
CVE-2009-0859
Published: Mar 9, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel before 2.6.28.5, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system hang) via an SHM_INFO shmctl call, as demonstrated by running the ipcs program.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
35390
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2009:028
vendor-advisory
x_refsource_SUSE
linux-kernel-shmgetstat-dos(49229)
vdb-entry
x_refsource_XF
[linux-kernel] 20090127 [PATCH 1/2] fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM
mailing-list
x_refsource_MLIST
DSA-1794
vendor-advisory
x_refsource_DEBIAN
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.5
x_refsource_CONFIRM
SUSE-SA:2009:030
vendor-advisory
x_refsource_SUSE
USN-751-1
vendor-advisory
x_refsource_UBUNTU
35185
third-party-advisory
x_refsource_SECUNIA
[git-commits-head] 20090205 shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM
mailing-list
x_refsource_MLIST
35011
third-party-advisory
x_refsource_SECUNIA
[linux-kernel] 20080229 [BUG] soft lockup detected with ipcs
mailing-list
x_refsource_MLIST
http://patchwork.kernel.org/patch/6554/
x_refsource_CONFIRM
SUSE-SA:2009:031
vendor-advisory
x_refsource_SUSE
34020
vdb-entry
x_refsource_BID
34981
third-party-advisory
x_refsource_SECUNIA
DSA-1800
vendor-advisory
x_refsource_DEBIAN
DSA-1787
vendor-advisory
x_refsource_DEBIAN
35121
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20090306 CVE request: kernel: shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM
mailing-list
x_refsource_MLIST
35394
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now