Your submission was sent successfully! Close

CVE-2012-4398

Published: 2 September 2012

The __request_module function in kernel/kmod.c in the Linux kernel before 3.4 does not set a certain killable attribute, which allows local users to cause a denial of service (memory consumption) via a crafted application.

From the Ubuntu security team

Tetsuo Handa reported a flaw in the OOM (out of memory) killer of the Linux kernel. A local unprivileged user can exploit this flaw to cause system unstability and denial of services.

Notes

AuthorNote
jdstrand
linux-armadaxp is maintained by OEM
apw
note that patches (1) and (4) are optional but we appear to have the
lot where they are specified
jj
SRU Bug https://bugs.launchpad.net/bugs/1000355 moved from Bugs
section because of the tools complaining about it.
Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
Patches:
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 70834d3070c3f3015ab5c05176d54bd4a0100546
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by b3449922502f5a161ee2b5022a33aec8472fbf18
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by d0bd587a80960d7ba7e0c8396e154028c9045c54
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 9d944ef32e83405a07376f112e9f02161d3e9731
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 5b9bd473e3b8a8c6c4ae99be475e6e9b27568555
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 3e63a93b987685f02421e18b2aa452d20553a88b
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 1cc684ab75123efe7ff446eb821d44375ba8fa30
linux-armadaxp
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-aws
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-ec2
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-flo
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-gke
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-goldfish
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-grouper
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-hwe
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-hwe-edge
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-linaro-omap
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-linaro-shared
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-backport-natty
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-quantal
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-raring
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-trusty
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-utopic
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-vivid
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-wily
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-lts-xenial
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-maguro
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-mako
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-manta
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-mvl-dove
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-qcm-msm
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-raspi2
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-snapdragon
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)
linux-ti-omap4
Launchpad, Ubuntu, Debian
upstream
Released (3.4~rc1)