| 2011-04-22 19:55:09 |
Brad Figg |
bug |
|
|
added bug |
| 2011-04-22 19:55:11 |
Brad Figg |
security vulnerability |
no |
yes |
|
| 2011-04-22 19:55:45 |
Brad Figg |
cve linked |
|
2010-4249 |
|
| 2011-04-22 19:55:53 |
Brad Figg |
nominated for series |
|
Ubuntu Natty |
|
| 2011-04-22 19:55:55 |
Brad Figg |
nominated for series |
|
Ubuntu Maverick |
|
| 2011-04-22 19:55:57 |
Brad Figg |
nominated for series |
|
Ubuntu Lucid |
|
| 2011-04-22 19:55:59 |
Brad Figg |
nominated for series |
|
Ubuntu Karmic |
|
| 2011-04-22 19:56:01 |
Brad Figg |
nominated for series |
|
Ubuntu Hardy |
|
| 2011-04-22 19:56:03 |
Brad Figg |
nominated for series |
|
Ubuntu Dapper |
|
| 2011-04-22 20:00:16 |
Brad Figg |
linux-ti-omap4 (Ubuntu): status |
New |
Invalid |
|
| 2011-04-22 20:00:19 |
Brad Figg |
linux-mvl-dove (Ubuntu): status |
New |
Invalid |
|
| 2011-04-22 20:00:29 |
Brad Figg |
linux-lts-backport-maverick (Ubuntu): status |
New |
Invalid |
|
| 2011-04-22 20:00:33 |
Brad Figg |
linux-fsl-imx51 (Ubuntu): status |
New |
Invalid |
|
| 2011-04-22 20:03:45 |
Brad Figg |
description |
Placeholder |
CVE-2010-4249
Vegard Nossum found a unix socket OOM was possible, posting an exploit
program.
My analysis is we can eat all LOWMEM memory before unix_gc() being
called from unix_release_sock(). Moreover, the thread blocked in
unix_gc() can consume huge amount of time to perform cleanup because of
huge working set.
One way to handle this is to have a sensible limit on unix_tot_inflight,
tested from wait_for_unix_gc() and to force a call to unix_gc() if this
limit is hit.
This solves the OOM and also reduce overall latencies, and should not
slowdown normal workloads. |
|
| 2011-04-22 20:04:15 |
Brad Figg |
attachment added |
|
dapper-patch.patch https://bugs.launchpad.net/ubuntu/+source/linux/+bug/769182/+attachment/2083285/+files/dapper-patch.patch |
|
| 2011-04-23 17:32:27 |
Brian Murray |
bug |
|
|
added subscriber Jeremy Foshee |
| 2011-04-26 16:02:47 |
Brad Figg |
bug task added |
|
linux (Ubuntu Dapper) |
|
| 2011-04-26 16:02:47 |
Brad Figg |
bug task added |
|
linux-fsl-imx51 (Ubuntu Dapper) |
|
| 2011-04-26 16:02:47 |
Brad Figg |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Dapper) |
|
| 2011-04-26 16:02:47 |
Brad Figg |
bug task added |
|
linux-mvl-dove (Ubuntu Dapper) |
|
| 2011-04-26 16:02:47 |
Brad Figg |
bug task added |
|
linux-ti-omap4 (Ubuntu Dapper) |
|
| 2011-04-26 16:03:02 |
Brad Figg |
bug task added |
|
linux (Ubuntu Hardy) |
|
| 2011-04-26 16:03:02 |
Brad Figg |
bug task added |
|
linux-fsl-imx51 (Ubuntu Hardy) |
|
| 2011-04-26 16:03:02 |
Brad Figg |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Hardy) |
|
| 2011-04-26 16:03:02 |
Brad Figg |
bug task added |
|
linux-mvl-dove (Ubuntu Hardy) |
|
| 2011-04-26 16:03:02 |
Brad Figg |
bug task added |
|
linux-ti-omap4 (Ubuntu Hardy) |
|
| 2011-04-26 16:03:15 |
Brad Figg |
bug task added |
|
linux (Ubuntu Karmic) |
|
| 2011-04-26 16:03:15 |
Brad Figg |
bug task added |
|
linux-fsl-imx51 (Ubuntu Karmic) |
|
| 2011-04-26 16:03:15 |
Brad Figg |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Karmic) |
|
| 2011-04-26 16:03:15 |
Brad Figg |
bug task added |
|
linux-mvl-dove (Ubuntu Karmic) |
|
| 2011-04-26 16:03:15 |
Brad Figg |
bug task added |
|
linux-ti-omap4 (Ubuntu Karmic) |
|
| 2011-04-26 16:03:27 |
Brad Figg |
bug task added |
|
linux (Ubuntu Lucid) |
|
| 2011-04-26 16:03:27 |
Brad Figg |
bug task added |
|
linux-fsl-imx51 (Ubuntu Lucid) |
|
| 2011-04-26 16:03:27 |
Brad Figg |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Lucid) |
|
| 2011-04-26 16:03:27 |
Brad Figg |
bug task added |
|
linux-mvl-dove (Ubuntu Lucid) |
|
| 2011-04-26 16:03:27 |
Brad Figg |
bug task added |
|
linux-ti-omap4 (Ubuntu Lucid) |
|
| 2011-04-26 16:03:40 |
Brad Figg |
bug task added |
|
linux (Ubuntu Maverick) |
|
| 2011-04-26 16:03:40 |
Brad Figg |
bug task added |
|
linux-fsl-imx51 (Ubuntu Maverick) |
|
| 2011-04-26 16:03:40 |
Brad Figg |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Maverick) |
|
| 2011-04-26 16:03:40 |
Brad Figg |
bug task added |
|
linux-mvl-dove (Ubuntu Maverick) |
|
| 2011-04-26 16:03:40 |
Brad Figg |
bug task added |
|
linux-ti-omap4 (Ubuntu Maverick) |
|
| 2011-04-26 16:03:55 |
Brad Figg |
bug task added |
|
linux (Ubuntu Natty) |
|
| 2011-04-26 16:03:55 |
Brad Figg |
bug task added |
|
linux-fsl-imx51 (Ubuntu Natty) |
|
| 2011-04-26 16:03:55 |
Brad Figg |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Natty) |
|
| 2011-04-26 16:03:55 |
Brad Figg |
bug task added |
|
linux-mvl-dove (Ubuntu Natty) |
|
| 2011-04-26 16:03:55 |
Brad Figg |
bug task added |
|
linux-ti-omap4 (Ubuntu Natty) |
|
| 2011-04-28 15:33:53 |
Paolo Pisati |
linux-ti-omap4 (Ubuntu Dapper): status |
New |
Invalid |
|
| 2011-04-28 15:33:57 |
Paolo Pisati |
linux-ti-omap4 (Ubuntu Hardy): status |
New |
Invalid |
|
| 2011-04-28 15:34:02 |
Paolo Pisati |
linux-ti-omap4 (Ubuntu Karmic): status |
New |
Invalid |
|
| 2011-04-28 15:34:08 |
Paolo Pisati |
linux-ti-omap4 (Ubuntu Lucid): status |
New |
Invalid |
|
| 2011-04-28 15:34:31 |
Paolo Pisati |
linux-mvl-dove (Ubuntu Dapper): status |
New |
Invalid |
|
| 2011-04-28 15:34:35 |
Paolo Pisati |
linux-mvl-dove (Ubuntu Hardy): status |
New |
Invalid |
|
| 2011-04-28 15:34:40 |
Paolo Pisati |
linux-mvl-dove (Ubuntu Karmic): status |
New |
Invalid |
|
| 2011-04-30 23:10:52 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/dapper-proposed/linux-source-2.6.15 |
|
| 2011-05-04 20:20:58 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/dapper-updates/linux-source-2.6.15 |
|
| 2011-05-30 09:50:26 |
Paolo Pisati |
linux-ti-omap4 (Ubuntu Maverick): status |
New |
Fix Released |
|
| 2011-05-30 09:52:21 |
Paolo Pisati |
linux-fsl-imx51 (Ubuntu Dapper): status |
New |
Invalid |
|
| 2011-05-30 09:52:25 |
Paolo Pisati |
linux-fsl-imx51 (Ubuntu Hardy): status |
New |
Invalid |
|
| 2011-05-30 09:52:29 |
Paolo Pisati |
linux-fsl-imx51 (Ubuntu Maverick): status |
New |
Invalid |
|
| 2011-05-30 09:52:47 |
Paolo Pisati |
linux-fsl-imx51 (Ubuntu Karmic): status |
New |
Won't Fix |
|
| 2011-05-30 09:53:05 |
Paolo Pisati |
linux-fsl-imx51 (Ubuntu Lucid): status |
New |
Fix Released |
|
| 2011-05-30 10:09:30 |
Paolo Pisati |
linux-mvl-dove (Ubuntu Lucid): status |
New |
Fix Released |
|
| 2011-05-30 10:09:49 |
Paolo Pisati |
linux-mvl-dove (Ubuntu Maverick): status |
New |
Fix Released |
|
| 2011-07-15 20:59:47 |
Leann Ogasawara |
linux (Ubuntu Karmic): status |
New |
Won't Fix |
|
| 2011-07-18 23:46:18 |
Brad Figg |
linux (Ubuntu): status |
New |
Incomplete |
|
| 2011-07-18 23:46:22 |
Brad Figg |
linux (Ubuntu Dapper): status |
New |
Incomplete |
|
| 2011-07-18 23:46:25 |
Brad Figg |
linux (Ubuntu Hardy): status |
New |
Incomplete |
|
| 2011-07-18 23:46:31 |
Brad Figg |
linux (Ubuntu Lucid): status |
New |
Incomplete |
|
| 2011-07-18 23:46:35 |
Brad Figg |
linux (Ubuntu Maverick): status |
New |
Incomplete |
|
| 2011-07-18 23:46:39 |
Brad Figg |
linux (Ubuntu Natty): status |
New |
Incomplete |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
linux (Ubuntu Hardy): status |
Incomplete |
Fix Released |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2010-4073 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2010-4165 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2010-4238 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2010-4649 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-0711 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-1010 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-1090 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-1170 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-1171 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-1172 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-1173 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-2484 |
|
| 2011-08-08 21:36:14 |
Launchpad Janitor |
cve linked |
|
2011-2534 |
|
| 2011-10-05 21:43:15 |
Jeremy Foshee |
removed subscriber Jeremy Foshee |
|
|
|
| 2011-10-14 20:42:54 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Dapper): status |
New |
Won't Fix |
|
| 2011-10-14 20:43:00 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Karmic): status |
New |
Won't Fix |
|
| 2011-10-14 20:47:25 |
Jamie Strandboge |
linux (Ubuntu Dapper): status |
Incomplete |
Won't Fix |
|
| 2011-10-15 00:17:43 |
Ubuntu Foundations Team Bug Bot |
tags |
|
patch |
|
| 2011-10-15 00:17:44 |
Ubuntu Foundations Team Bug Bot |
bug |
|
|
added subscriber Ubuntu Review Team |
| 2013-05-21 15:45:47 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Maverick): status |
New |
Won't Fix |
|
| 2013-05-21 21:25:30 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Hardy): status |
New |
Won't Fix |
|
| 2013-05-21 21:25:39 |
Jamie Strandboge |
linux-lts-backport-maverick (Ubuntu Lucid): status |
New |
Won't Fix |
|
| 2013-08-18 17:19:54 |
Julian Wiedmann |
linux (Ubuntu Maverick): status |
Incomplete |
Invalid |
|
| 2013-08-18 17:20:18 |
Julian Wiedmann |
linux (Ubuntu Natty): status |
Incomplete |
Invalid |
|
| 2015-02-04 19:14:08 |
Mathew Hodson |
tags |
patch |
kernel-cve-tracking-bug patch |
|
| 2015-02-16 03:33:29 |
Mathew Hodson |
cve linked |
|
2010-0435 |
|
| 2015-02-16 03:33:29 |
Mathew Hodson |
cve linked |
|
2010-4169 |
|
| 2015-02-16 03:33:29 |
Mathew Hodson |
linux (Ubuntu Lucid): status |
Incomplete |
Fix Released |
|
| 2015-02-16 03:34:34 |
Mathew Hodson |
linux (Ubuntu Maverick): status |
Invalid |
Fix Released |
|
| 2015-02-16 03:39:37 |
Mathew Hodson |
linux (Ubuntu): status |
Incomplete |
Fix Released |
|
| 2015-02-16 03:42:56 |
Mathew Hodson |
linux (Ubuntu Natty): status |
Invalid |
Fix Released |
|
| 2015-02-16 03:53:59 |
Mathew Hodson |
description |
CVE-2010-4249
Vegard Nossum found a unix socket OOM was possible, posting an exploit
program.
My analysis is we can eat all LOWMEM memory before unix_gc() being
called from unix_release_sock(). Moreover, the thread blocked in
unix_gc() can consume huge amount of time to perform cleanup because of
huge working set.
One way to handle this is to have a sensible limit on unix_tot_inflight,
tested from wait_for_unix_gc() and to force a call to unix_gc() if this
limit is hit.
This solves the OOM and also reduce overall latencies, and should not
slowdown normal workloads. |
CVE-2010-4249
Vegard Nossum found a unix socket OOM was possible, posting an exploit
program.
My analysis is we can eat all LOWMEM memory before unix_gc() being
called from unix_release_sock(). Moreover, the thread blocked in
unix_gc() can consume huge amount of time to perform cleanup because of
huge working set.
One way to handle this is to have a sensible limit on unix_tot_inflight,
tested from wait_for_unix_gc() and to force a call to unix_gc() if this
limit is hit.
This solves the OOM and also reduce overall latencies, and should not
slowdown normal workloads.
Break-Fix: - 9915672d41273f5b77f1b3c29b391ffb7732b84b |
|
