Vigil@nce - Linux kernel: denial of service via Limits
February 2016 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can bypass limits on the Linux kernel, in order
to trigger a denial of service.
Impacted products: Debian, Fedora, Linux.
Severity: 1/4.
Creation date: 19/01/2016.
DESCRIPTION OF THE VULNERABILITY
Resource limits can be defined for each process.
However, a local attacker can bypass these limits.
A local attacker can therefore bypass limits on the Linux kernel,
in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-Limits-18752