CVE-2008-2372

CVE-2008-2372 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service (memory consumption) via a large number of calls to the get_user_pages function, which lacks a ZERO_PAGE optimization and results in allocation of "useless newly zeroed pages."

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.