Wind River Support Network

HomeOther DownloadsSecurity advisory - Linux kernel 2.6.19 and earlier CVE-2007-4133
Optional Type: Patch

Security advisory - Linux kernel 2.6.19 and earlier CVE-2007-4133

Released: May 1, 2008     Updated: May 1, 2008


The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain prio_tree calculations using HPAGE_SIZE instead of PAGE_SIZE units, which allows local users to cause a denial of service (panic) via unspecified vectors. IDENTIFIER = WIND00110680

Product Version

Linux Platforms 1.x


Installation Notes

Installation Notes for 1.4 for 1.5

1. Unzip the patch under [install_dir]/updates

2. Install the patch CD by entering the patch CD directory and run setup_linux.

3. This is a source only patch so you will have to build the kernel

4. Issue a make fs and make the kernel in a configured directory.

5. Upload the kernel and rootfs into the target and boot it up.

Live chat