CVE-2010-4256

Linux Kernel < 2.6.37 - Denial of Service via F_SETPIPE_SZ fcntl Call

Title source: llm
STIX 2.1

Description

The pipe_fcntl function in fs/pipe.c in the Linux kernel before 2.6.37 does not properly determine whether a file is a named pipe, which allows local users to cause a denial of service via an F_SETPIPE_SZ fcntl call.

References (4)

Core 4
Core References
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://openwall.com/lists/oss-security/2010/11/30/9
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://openwall.com/lists/oss-security/2010/11/30/6

Scores

EPSS 0.0036
EPSS Percentile 28.5%

Details

CWE
CWE-20
Status published
Products (1)
linux/linux_kernel < 2.6.37
Published Jan 25, 2011
Tracked Since Feb 18, 2026