Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-2847

Опубликовано: 28 дек. 2015
Источник: redhat
CVSS3: 5.5
CVSS2: 4.9
EPSS Низкий

Описание

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

It is possible for a single process to cause an OOM condition by filling large pipes with data that are never read. A typical process filling 4096 pipes with 1 MB of data will use 4 GB of memory and there can be multiple such processes, up to a per-user-limit.

Отчет

This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/. This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future Linux kernel updates for the respective releases might address this issue.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelWill not fix
Red Hat Enterprise Linux 6kernelAffected
Red Hat Enterprise MRG 2realtime-kernelAffected
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2016:258403.11.2016
Red Hat Enterprise Linux 7kernelFixedRHSA-2016:257403.11.2016
Red Hat Enterprise Linux 7.2 Extended Update SupportkernelFixedRHSA-2017:021731.01.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=1313428kernel: pipe: limit the per-user amount of pages allocated in pipes

EPSS

Процентиль: 16%
0.00051
Низкий

5.5 Medium

CVSS3

4.9 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-2847

CVSS3: 6.2
ubuntu
около 9 лет назад

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

nvd логотип

CVE-2016-2847

CVSS3: 6.2
nvd
около 9 лет назад

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

debian логотип

CVE-2016-2847

CVSS3: 6.2
debian
около 9 лет назад

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of ...

github логотип

GHSA-g874-pwj2-p4wh

CVSS3: 6.2
github
около 3 лет назад

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

suse-cvrf логотип

openSUSE-SU-2016:1382-1

suse-cvrf
около 9 лет назад

Security update for the Linux Kernel

EPSS

Процентиль: 16%
0.00051
Низкий

5.5 Medium

CVSS3

4.9 Medium

CVSS2