oss-sec mailing list archives

CVE request -- Linux kernel: selinux: rate-limit unrecognized netlink message warnings in selinux_nlmsg_perm()

From: Vladis Dronov <vdronov () redhat com>
Date: Wed, 4 Nov 2015 10:11:16 -0500 (EST)

It was found that the kernel produces unlimited number of warning
messages in case certain malformed NETLINK packets are received.

A local, unprivileged user could generate such packets unlimitedly
and potentially flood the kernel and the system log with excessive
warning messages.

Upstream patch proposal:
http://article.gmane.org/gmane.linux.kernel.lsm/25958

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1278005

Thanks,
Vladis

Current thread:

CVE request -- Linux kernel: selinux: rate-limit unrecognized netlink message warnings in selinux_nlmsg_perm() Vladis Dronov (Nov 04)
- Re: CVE request -- Linux kernel: selinux: rate-limit unrecognized netlink message warnings in selinux_nlmsg_perm() cve-assign (Nov 05)