Description
A certain Fedora patch for the utrace subsystem in the Linux kernel before 2.6.26.5-28 on Fedora 8, and before 2.6.26.5-45 on Fedora 9, allows local users to cause a denial of service (NULL pointer dereference and system crash or hang) via a call to the utrace_control function.
Exploits
324512008-10-02dosLinux
Linux Kernel (Fedora 8/9) - 'utrace_control' Null Pointer Dereference Denial of Service
By Michael Simms
References
secalert@redhat.com
http://kerneloops.org/oops.php?number=56705secalert@redhat.com
http://www.openwall.com/lists/oss-security/2008/10/02/1secalert@redhat.com
http://www.securityfocus.com/bid/31536secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=464883secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/45644af854a3a-2127-422b-91ae-364da2661108
http://kerneloops.org/oops.php?number=56705af854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2008/10/02/1af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/31536af854a3a-2127-422b-91ae-364da2661108
https://bugzilla.redhat.com/show_bug.cgi?id=464883af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/45644