CVE-2009-1961

MEDIUM

Linux kernel <2.6.30-rc3 - DoS

Title source: llm

Description

The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2.6.27 before 2.6.27.24, 2.6.29 before 2.6.29.4, and possibly other versions down to 2.6.19 allows local users to cause a denial of service (prevention of file creation and removal) via a series of splice system calls that trigger a deadlock between the generic_file_splice_write, splice_from_pipe, and ocfs2_file_splice_write functions.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Miklos Szeredi · cdoslinux

https://www.exploit-db.com/exploits/33015

View Code ZIP pw:eip

References (20)

[Broken Link] http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=7bfac9ecf0585962fe13584f5cf526d8c8e76f17

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00004.html

[Broken Link] http://secunia.com/advisories/35390

[Broken Link] http://secunia.com/advisories/35394

[Broken Link] http://secunia.com/advisories/35656

[Broken Link] http://secunia.com/advisories/35847

[Broken Link] http://secunia.com/advisories/36051

[Broken Link, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1022307

[Mailing List, Patch] http://www.debian.org/security/2009/dsa-1844

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2009:135

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2009:148

[Mailing List, Patch] http://www.openwall.com/lists/oss-security/2009/05/29/2

[Exploit, Mailing List, Patch] http://www.openwall.com/lists/oss-security/2009/05/30/1

[Exploit, Mailing List] http://www.openwall.com/lists/oss-security/2009/06/02/2

[Exploit, Mailing List] http://www.openwall.com/lists/oss-security/2009/06/03/1

[Broken Link] http://www.redhat.com/support/errata/RHSA-2009-1157.html

[Broken Link, Exploit, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/35143

[Third Party Advisory] http://www.ubuntu.com/usn/usn-793-1

Scores

CVSS v3 4.7

EPSS 0.0011

EPSS Percentile 28.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-667

Status published

Products (12)

canonical/ubuntu_linux 6.06

canonical/ubuntu_linux 8.04

canonical/ubuntu_linux 8.10

canonical/ubuntu_linux 9.04

debian/debian_linux 4.0

linux/linux_kernel 2.6.30 rc1 (2 CPE variants)

linux/linux_kernel < 2.6.19

opensuse/opensuse 10.3

opensuse/opensuse 11.1

suse/linux_enterprise 11.0

... and 2 more

Published Jun 08, 2009

Tracked Since Feb 18, 2026