CVE-2006-7051

Published: 2/24/2007 Last updated: 8/7/2024 Reserved: 2/23/2007

The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process' memory.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (1)

Product	Vendor	Version
n/a	n/a	15.2(4)E5

References (8)

https://www.exploit-db.com/exploits/1657
http://securityreason.com/securityalert/2287
https://exchange.xforce.ibmcloud.com/vulnerabilities/25712
http://www.securityfocus.com/archive/1/430278/30/5790/threaded
https://www.exploit-db.com/exploits/1657
http://securityreason.com/securityalert/2287
https://exchange.xforce.ibmcloud.com/vulnerabilities/25712
http://www.securityfocus.com/archive/1/430278/30/5790/threaded