Upstream information
CVE-2008-5300 at MITRE
Description
Linux kernel 2.6.28 allows local users to cause a denial of service ("soft lockup" and process loss) via a large number of sendmsg function calls, which does not block during AF_UNIX garbage collection and triggers an OOM condition, a different vulnerability than CVE-2008-5029.
SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
CVSS v2 Scores
| | National Vulnerability Database |
| Base Score | 4.9 |
| Vector | AV:L/AC:L/Au:N/C:N/I:N/A:C |
| Access Vector | Local |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Complete |
SUSE Bugzilla entry:
449739 [CLOSED / NORESPONSE]
SUSE Security Advisories:
List of released packages
| Product(s) | Fixed package version(s) | References |
| SUSE Linux Enterprise Server 11 SP1 |
kernel-default >= 2.6.32.12-0.7.1kernel-default-base >= 2.6.32.12-0.7.1kernel-default-devel >= 2.6.32.12-0.7.1kernel-default-man >= 2.6.32.12-0.7.1kernel-pae >= 2.6.32.12-0.7.1kernel-pae-base >= 2.6.32.12-0.7.1kernel-pae-devel >= 2.6.32.12-0.7.1kernel-ppc64 >= 2.6.32.12-0.7.1kernel-ppc64-base >= 2.6.32.12-0.7.1kernel-ppc64-devel >= 2.6.32.12-0.7.1kernel-source >= 2.6.32.12-0.7.1kernel-syms >= 2.6.32.12-0.7.1kernel-trace >= 2.6.32.12-0.7.1kernel-trace-base >= 2.6.32.12-0.7.1kernel-trace-devel >= 2.6.32.12-0.7.1kernel-xen >= 2.6.32.12-0.7.1kernel-xen-base >= 2.6.32.12-0.7.1kernel-xen-devel >= 2.6.32.12-0.7.1 | |
| SUSE Linux Enterprise Server 11 SP2 |
kernel-default >= 3.0.13-0.27.1kernel-default-base >= 3.0.13-0.27.1kernel-default-devel >= 3.0.13-0.27.1kernel-default-man >= 3.0.13-0.27.1kernel-pae >= 3.0.13-0.27.1kernel-pae-base >= 3.0.13-0.27.1kernel-pae-devel >= 3.0.13-0.27.1kernel-ppc64 >= 3.0.13-0.27.1kernel-ppc64-base >= 3.0.13-0.27.1kernel-ppc64-devel >= 3.0.13-0.27.1kernel-source >= 3.0.13-0.27.1kernel-syms >= 3.0.13-0.27.1kernel-trace >= 3.0.13-0.27.1kernel-trace-base >= 3.0.13-0.27.1kernel-trace-devel >= 3.0.13-0.27.1kernel-xen >= 3.0.13-0.27.1kernel-xen-base >= 3.0.13-0.27.1kernel-xen-devel >= 3.0.13-0.27.1 | |
| SUSE Linux Enterprise Server 11 SP3 |
kernel-default >= 3.0.76-0.11.1kernel-default-base >= 3.0.76-0.11.1kernel-default-devel >= 3.0.76-0.11.1kernel-default-man >= 3.0.76-0.11.1kernel-pae >= 3.0.76-0.11.1kernel-pae-base >= 3.0.76-0.11.1kernel-pae-devel >= 3.0.76-0.11.1kernel-ppc64 >= 3.0.76-0.11.1kernel-ppc64-base >= 3.0.76-0.11.1kernel-ppc64-devel >= 3.0.76-0.11.1kernel-source >= 3.0.76-0.11.1kernel-syms >= 3.0.76-0.11.1kernel-trace >= 3.0.76-0.11.1kernel-trace-base >= 3.0.76-0.11.1kernel-trace-devel >= 3.0.76-0.11.1kernel-xen >= 3.0.76-0.11.1kernel-xen-base >= 3.0.76-0.11.1kernel-xen-devel >= 3.0.76-0.11.1 | |
| SUSE Linux Enterprise Server 11 SP4 |
kernel-default >= 3.0.101-63.1kernel-default-base >= 3.0.101-63.1kernel-default-devel >= 3.0.101-63.1kernel-default-man >= 3.0.101-63.1kernel-pae >= 3.0.101-63.1kernel-pae-base >= 3.0.101-63.1kernel-pae-devel >= 3.0.101-63.1kernel-ppc64 >= 3.0.101-63.1kernel-ppc64-base >= 3.0.101-63.1kernel-ppc64-devel >= 3.0.101-63.1kernel-source >= 3.0.101-63.1kernel-syms >= 3.0.101-63.1kernel-trace >= 3.0.101-63.1kernel-trace-base >= 3.0.101-63.1kernel-trace-devel >= 3.0.101-63.1kernel-xen >= 3.0.101-63.1kernel-xen-base >= 3.0.101-63.1kernel-xen-devel >= 3.0.101-63.1 | |
| SUSE Linux Enterprise Software Development Kit 11 SP4 |
kernel-docs >= 3.0.101-63.1 | |
