Red Hat Bugzilla – Bug 446031
CVE-2008-2136 kernel: sit memory leak
Last modified: 2016-03-04 05:41:56 EST
Description of problem:
sit: Add missing kfree_skb() on pskb_may_pull() failure.
Noticed by Paul Marks <firstname.lastname@example.org>.
Proposed upstream patch:
kernel-184.108.40.206-18.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
Fixed upstream in 220.127.116.11:
Upstream patch in Linus' git tree:
I don't know if this is related, but I updated to a new kernel (Fed8) and this
kernel is unusable because of a memory leak. I have 3GB and it takes about 10-20
minutes to fill, then I need to reboot.
I went back a kernel using the boot/grub.conf option.
The kernel with a problem is 18.104.22.168-27.fc8
The kernel that runs ok is 22.214.171.124-10.fc8
System is x86_64 and processor is Intel Pentium Dual CPU E2160 @1.80Ghz
Stopped most servers (httpd, asterisk, bluetooth,dhdpd, sepostgresql, tomcat)
for above tests (and currently).
I can provide additional information - let me know.
text used in RHSA:
* a possible kernel memory leak was found in the Linux kernel Simple
Internet Transition (SIT) INET6 implementation. This could allow a local
unprivileged user to cause a denial of service. (CVE-2008-2136, Important)
This was addressed via:
MRG Realtime for RHEL 5 Server (RHSA-2008:0585)
Red Hat Enterprise Linux version 4 (RHSA-2008:0607)
Red Hat Enterprise Linux version 5 (RHSA-2008:0612)
Red Hat Linux Advanced Workstation 2.1 (RHSA-2008:0787)
Red Hat Enterprise Linux version 3 (RHSA-2008:0973)
Red Hat Enterprise Linux version 2.1 (RHSA-2009:0001)