Red Hat Bugzilla – Bug 1290642
CVE-2015-8785 kernel: fuse: possible denial of service in fuse_fill_write_pages()
Last modified: 2016-05-24 03:24:14 EDT
A patch was posted to fix an issue regarding unkillable task eating CPU.
The problem is in the fuse_fill_write_pages() function. When a user
calls the sys_writev syscall with specially crafted sequence of iovs
the kernel function may never terminate and continue in a tight loop,
the process is unable to be killed.
Introduced in commit ea9b9907b82a09bd1a708004454f7065de77c5b0
Fixed in commit 3ca8138f014a913f98e6ef40e939868e1e9ea876
This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 6 and 7 and does not plan to be fixed in future updates.