Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0787

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2009-0787
Last Modified 22 Mar 2012 12:00:00
Published 24 Mar 2009 09:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-0787

Summary

The ecryptfs_write_metadata_to_contents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory.

Vulnerable Systems

Operating System

  • Kernel Linux 2.6.28

  • Kernel Linux 2.6.28.1

  • Kernel Linux 2.6.28.2

  • Kernel Linux 2.6.28.3

  • Kernel Linux 2.6.28.4

  • Kernel Linux 2.6.28.5

  • Kernel Linux 2.6.28.6

  • Kernel Linux 2.6.28.7

  • Kernel Linux 2.6.28.8

  • Linux Kernel 2.6.28

  • Linux Kernel 2.6.28.1

  • Linux Kernel 2.6.28.2

  • Linux Kernel 2.6.28.3

  • Linux Kernel 2.6.28.4

  • Linux Kernel 2.6.28.5

  • Linux Kernel 2.6.28.6

  • Linux Kernel 2.6.28.7

  • Linux Kernel 2.6.28.8


References

BID - 34216

XF - linux-kernel-ecryptfs-information-disclosure(49355)

VUPEN - ADV-2009-3316

VUPEN - ADV-2009-0802

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2009-0016.html

SECTRACK - 1022177

BUGTRAQ - 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.9

SECUNIA - 37471

SECUNIA - 35015

SECUNIA - 34422

REDHAT - RHSA-2009:0473

OSVDB - 52860

CONFIRM - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=8faece5f906725c10e7a1f6caf84452abadbdc7b


Last Updated: 27 May 2016 10:58:23