CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
92.5%
fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2
does not properly interact with CLONE_NEWPID clone system calls, which
allows remote attackers to cause a denial of service (reference leak and
memory consumption) by making many connections to a daemon that uses PID
namespaces to isolate clients, as demonstrated by vsftpd.
Author | Note |
---|---|
jdstrand | linux-armadaxp is maintained by OEM |
tyhicks | Reproducer in oss-security link above introduced in upstream 3.1 kernel |