Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1294

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2008-1294
Last Modified 21 Aug 2010 01:18:08
Published 02 May 2008 12:05:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-1294

Summary

Linux kernel 2.6.17, and other versions before 2.6.22, does not check when a user attempts to set RLIMIT_CPU to 0 until after the change is made, which allows local users to bypass intended resource limits.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.16

  • Linux Kernel 2.6.16 Rc7

  • Linux Kernel 2.6.16.1

  • Linux Kernel 2.6.16.10

  • Linux Kernel 2.6.16.11

  • Linux Kernel 2.6.16.12

  • Linux Kernel 2.6.16.13

  • Linux Kernel 2.6.16.14

  • Linux Kernel 2.6.16.15

  • Linux Kernel 2.6.16.16

  • Linux Kernel 2.6.16.17

  • Linux Kernel 2.6.16.18

  • Linux Kernel 2.6.16.19

  • Linux Kernel 2.6.16.2

  • Linux Kernel 2.6.16.20

  • Linux Kernel 2.6.16.21

  • Linux Kernel 2.6.16.22

  • Linux Kernel 2.6.16.23

  • Linux Kernel 2.6.16.24

  • Linux Kernel 2.6.16.25

  • Linux Kernel 2.6.16.26

  • Linux Kernel 2.6.16.27

  • Linux Kernel 2.6.16.28

  • Linux Kernel 2.6.16.29

  • Linux Kernel 2.6.16.3

  • Linux Kernel 2.6.16.30

  • Linux Kernel 2.6.16.31

  • Linux Kernel 2.6.16.32

  • Linux Kernel 2.6.16.33

  • Linux Kernel 2.6.16.34

  • Linux Kernel 2.6.16.35

  • Linux Kernel 2.6.16.36

  • Linux Kernel 2.6.16.37

  • Linux Kernel 2.6.16.38

  • Linux Kernel 2.6.16.39

  • Linux Kernel 2.6.16.4

  • Linux Kernel 2.6.16.40

  • Linux Kernel 2.6.16.41

  • Linux Kernel 2.6.16.43

  • Linux Kernel 2.6.16.44

  • Linux Kernel 2.6.16.45

  • Linux Kernel 2.6.16.46

  • Linux Kernel 2.6.16.47

  • Linux Kernel 2.6.16.48

  • Linux Kernel 2.6.16.49

  • Linux Kernel 2.6.16.5

  • Linux Kernel 2.6.16.50

  • Linux Kernel 2.6.16.51

  • Linux Kernel 2.6.16.52

  • Linux Kernel 2.6.16.53

  • Linux Kernel 2.6.16.6

  • Linux Kernel 2.6.16.7

  • Linux Kernel 2.6.16.8

  • Linux Kernel 2.6.16.9

  • Linux Kernel 2.6.17

  • Linux Kernel 2.6.17.1

  • Linux Kernel 2.6.17.10

  • Linux Kernel 2.6.17.11

  • Linux Kernel 2.6.17.12

  • Linux Kernel 2.6.17.13

  • Linux Kernel 2.6.17.14

  • Linux Kernel 2.6.17.2

  • Linux Kernel 2.6.17.3

  • Linux Kernel 2.6.17.4

  • Linux Kernel 2.6.17.5

  • Linux Kernel 2.6.17.6

  • Linux Kernel 2.6.17.7

  • Linux Kernel 2.6.17.8

  • Linux Kernel 2.6.17.9

  • Linux Kernel 2.6.18

  • Linux Kernel 2.6.18.1

  • Linux Kernel 2.6.18.2

  • Linux Kernel 2.6.18.3

  • Linux Kernel 2.6.18.4

  • Linux Kernel 2.6.18.5

  • Linux Kernel 2.6.18.6

  • Linux Kernel 2.6.18.7

  • Linux Kernel 2.6.18.8

  • Linux Kernel 2.6.19

  • Linux Kernel 2.6.19.0

  • Linux Kernel 2.6.19.1

  • Linux Kernel 2.6.19.2

  • Linux Kernel 2.6.19.3

  • Linux Kernel 2.6.2

  • Linux Kernel 2.6.20

  • Linux Kernel 2.6.20.1

  • Linux Kernel 2.6.20.10

  • Linux Kernel 2.6.20.11

  • Linux Kernel 2.6.20.12

  • Linux Kernel 2.6.20.13

  • Linux Kernel 2.6.20.14

  • Linux Kernel 2.6.20.15

  • Linux Kernel 2.6.20.2

  • Linux Kernel 2.6.20.3

  • Linux Kernel 2.6.20.4

  • Linux Kernel 2.6.20.5

  • Linux Kernel 2.6.20.6

  • Linux Kernel 2.6.20.7

  • Linux Kernel 2.6.20.8

  • Linux Kernel 2.6.20.9

  • Linux Kernel 2.6.21

  • Linux Kernel 2.6.21.1

  • Linux Kernel 2.6.21.2

  • Linux Kernel 2.6.21.3

  • Linux Kernel 2.6.21.4


References

UBUNTU - USN-618-1

BID - 29004

REDHAT - RHSA-2008:0612

DEBIAN - DSA-1565

SECUNIA - 31341

SECUNIA - 30769

SECUNIA - 30018

MISC - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9926e4c74300c4b31dee007298c6475d33369df0

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=215000

XF - linux-kernel-rlimitcpu-security-bypass(42145)

CONFIRM - http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22


Last Updated: 27 May 2016 10:47:06