CVE-2008-4302

Impact:
Important
Public Date:
2007-07-20
Bugzilla:
462434: CVE-2008-4302 kernel: splice: fix bad unlock_page() in error case

The MITRE CVE dictionary describes this issue as:

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as demonstrated by the fio I/O tool.

Find out more about CVE-2008-4302 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and Red Hat Enterprise MRG.

It was addressed in Red Hat Enterprise Linux 5 via: https://rhn.redhat.com/errata/RHSA-2008-0957.html

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (kernel) RHSA-2008:0957 2008-11-04
Last Modified

CVE description copyright © 2017, The MITRE Corporation