Denial of Service Vulnerability in Linux Kernel's vhost_dev_ioctl Function

Denial of Service Vulnerability in Linux Kernel's vhost_dev_ioctl Function

CVE-2015-6252 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

The vhost_dev_ioctl function in drivers/vhost/vhost.c in the Linux kernel before 4.1.5 allows local users to cause a denial of service (memory consumption) via a VHOST_SET_LOG_FD ioctl call that triggers permanent file-descriptor allocation.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.