Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0007

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-0007
Last Modified 07 Mar 2011 10:03:45
Published 07 Feb 2008 09:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-0007

Summary

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.22.16


References

VUPEN - ADV-2008-2222

VUPEN - ADV-2008-0445

UBUNTU - USN-618-1

REDHAT - RHSA-2008:0787

MANDRIVA - MDVSA-2008:174

MANDRIVA - MDVSA-2008:112

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.17

DEBIAN - DSA-1565

SECUNIA - 33280

SECUNIA - 31246

SECUNIA - 30769

SECUNIA - 30116

SECUNIA - 30112

SECUNIA - 30110

SECUNIA - 30018

MLIST - [linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007)

MLIST - [Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix

SUSE - SUSE-SA:2008:006

BID - 27705

BID - 27686

BUGTRAQ - 20080208 rPSA-2008-0048-1 kernel

REDHAT - RHSA-2008:0237

REDHAT - RHSA-2008:0233

REDHAT - RHSA-2008:0211

MANDRIVA - MDVSA-2008:072

MANDRIVA - MDVSA-2008:044

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1

DEBIAN - DSA-1504

DEBIAN - DSA-1503

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048

SECTRACK - 1019357

SECUNIA - 29570

SECUNIA - 29058

SECUNIA - 28826

SECUNIA - 28806

SUSE - SUSE-SA:2008:017


Last Updated: 27 May 2016 10:46:38