Back to bug 1305803
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Martin Prpič | 2016-02-09 09:55:34 UTC | Depends On | 1305804 | |
| Martin Prpič | 2016-02-09 09:58:04 UTC | Blocks | 1305808 | |
| Vladis Dronov | 2016-02-18 21:01:16 UTC | CC | vdronov | |
| Vladis Dronov | 2016-02-18 21:04:17 UTC | Doc Text | A flaw was found in the Linux kernel's hugetlbfs handling of punching holes in hugetlbfs files with either truncate or fallocate. When truncating a hugetlbfs file, this bug could prevent some pages from being unmapped. If pages are not properly unmapped during truncate, the kernel bug is hit which leads the system to panic. In the fallocate hole punch case, this bug could prevent pages from being unmapped as in the truncate case also. However, for hole punch the result is that unmapped pages will not be removed during the operation. For hole punch, it is also possible that more pages than desired will be unmapped. This unnecessary unmapping will cause page faults to reestablish the mappings on subsequent page access. | |
| Vladis Dronov | 2016-02-18 21:07:10 UTC | Whiteboard | impact=important,public=20160208,reported=20160208,source=oss-security,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected | impact=important,public=20160208,reported=20160208,source=oss-security,cvss2=4.4/AV:L/AC:M/Au:S/C:N/I:N/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-02-18 21:07:26 UTC | Whiteboard | impact=important,public=20160208,reported=20160208,source=oss-security,cvss2=4.4/AV:L/AC:M/Au:S/C:N/I:N/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.4/AV:L/AC:M/Au:S/C:N/I:N/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-02-18 21:07:42 UTC | Severity | high | medium |
| Vladis Dronov | 2016-02-18 21:07:57 UTC | Priority | high | medium |
| Vladis Dronov | 2016-02-18 21:11:42 UTC | Whiteboard | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.4/AV:L/AC:M/Au:S/C:N/I:N/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.6/AV:L/AC:L/Au:S/C:N/I:N/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-02-18 21:15:15 UTC | Status | NEW | CLOSED |
| Resolution | --- | NOTABUG | ||
| Last Closed | 2016-02-18 16:15:15 UTC | |||
| Vladis Dronov | 2016-02-18 21:30:59 UTC | Whiteboard | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.6/AV:L/AC:L/Au:S/C:N/I:N/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.6/AV:L/AC:L/Au:S/C:N/I:N/A:C,cwe=CWE-399,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
| Summer Long | 2016-02-19 00:33:01 UTC | CC | slong | |
| Doc Text | A flaw was found in the Linux kernel's hugetlbfs handling of punching holes in hugetlbfs files with either truncate or fallocate. When truncating a hugetlbfs file, this bug could prevent some pages from being unmapped. If pages are not properly unmapped during truncate, the kernel bug is hit which leads the system to panic. In the fallocate hole punch case, this bug could prevent pages from being unmapped as in the truncate case also. However, for hole punch the result is that unmapped pages will not be removed during the operation. For hole punch, it is also possible that more pages than desired will be unmapped. This unnecessary unmapping will cause page faults to reestablish the mappings on subsequent page access. | A resource-management flaw was found in the Linux kernel's hugetlbfs handling of punching holes in hugetlbfs files with either truncate or fallocate. When truncating a hugetlbfs file, this bug could prevent some pages from being unmapped. If pages are not properly unmapped during truncate, the kernel bug is hit which leads the system to panic. In the fallocate hole-punch case, this bug could prevent pages from being unmapped (as is also the case with truncating). However, for hole punch the result is that unmapped pages are not removed during the operation, and it is also possible that more pages than desired will be unmapped. This unnecessary unmapping causes page faults to reestablish the mappings on subsequent page access. | ||
| Summer Long | 2016-02-19 00:33:36 UTC | Flags | needinfo?(vdronov) | |
| Vladis Dronov | 2016-02-19 19:31:46 UTC | Whiteboard | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.6/AV:L/AC:L/Au:S/C:N/I:N/A:C,cwe=CWE-399,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.6/AV:L/AC:L/Au:S/C:N/I:N/A:C,cwe=CWE-772,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-02-22 07:29:09 UTC | Flags | needinfo?(vdronov) | |
| Summer Long | 2016-02-22 22:30:35 UTC | Doc Text | A resource-management flaw was found in the Linux kernel's hugetlbfs handling of punching holes in hugetlbfs files with either truncate or fallocate. When truncating a hugetlbfs file, this bug could prevent some pages from being unmapped. If pages are not properly unmapped during truncate, the kernel bug is hit which leads the system to panic. In the fallocate hole-punch case, this bug could prevent pages from being unmapped (as is also the case with truncating). However, for hole punch the result is that unmapped pages are not removed during the operation, and it is also possible that more pages than desired will be unmapped. This unnecessary unmapping causes page faults to reestablish the mappings on subsequent page access. | A resource-management flaw was found in the Linux kernel's hugetlbfs handling of punching holes in hugetlbfs files with either truncate or fallocate. When truncating a hugetlbfs file, this bug could prevent some pages from being unmapped, which panics the system. With fallocate, pages could be prevented from being unmapped and then not removed, or more pages than desired could be unmapped (causing page faults to reestablish the mappings on subsequent page access). A local, non-privileged attacker could exploit this flaw by issuing a sequence of huge-page memory requests that crash the system (denial of service). |
| Petr Matousek | 2016-06-02 12:00:33 UTC | CC | pmatouse | |
| Petr Matousek | 2016-06-02 12:02:29 UTC | Whiteboard | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.6/AV:L/AC:L/Au:S/C:N/I:N/A:C,cwe=CWE-772,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cwe=CWE-772,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
| Product Security DevOps Team | 2019-09-29 13:44:17 UTC | Whiteboard | impact=moderate,public=20160208,reported=20160208,source=oss-security,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cwe=CWE-772,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected |
Back to bug 1305803