Published: 02/05/2008 Updated: 26/08/2020

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

VMScore: 614

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Subscribe to Linux

Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x prior to 2.6.24.6, and 2.6.25 prior to 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly gain privileges via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
linux linux kernel 2.6.25
canonical ubuntu linux 6.06
canonical ubuntu linux 7.04
canonical ubuntu linux 7.10
canonical ubuntu linux 8.04
opensuse opensuse 10.2
opensuse opensuse 10.3
suse linux enterprise desktop 10
suse linux enterprise server 9
suse linux enterprise server 10
suse linux enterprise software development kit 10
debian debian linux 4.0
fedoraproject fedora 8

It was discovered that the ALSA /proc interface did not write the correct number of bytes when reporting memory allocations A local attacker might be able to access sensitive kernel memory, leading to a loss of privacy (CVE-2007-4571) ...

It was discovered that PowerPC kernels did not correctly handle reporting certain system details By requesting a specific set of information, a local attacker could cause a system crash resulting in a denial of service (CVE-2007-6694) ...

CWE-362 http://marc.info/?l=linux-kernel&m=120967963803205&w=2 http://marc.info/?l=linux-kernel&m=120967964303224&w=2 http://wiki.rpath.com/Advisories:rPSA-2008-0157 http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0157 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.6 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.1 https://issues.rpath.com/browse/RPL-2501 http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.36.4 https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00232.html http://www.mandriva.com/security/advisories?name=MDVSA-2008:105 http://www.redhat.com/support/errata/RHSA-2008-0211.html http://www.redhat.com/support/errata/RHSA-2008-0233.html http://www.redhat.com/support/errata/RHSA-2008-0237.html http://www.securityfocus.com/bid/29003 http://www.securitytracker.com/id?1019959 http://secunia.com/advisories/30017 http://secunia.com/advisories/30044 http://secunia.com/advisories/30108 http://secunia.com/advisories/30260 http://secunia.com/advisories/30515 http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html http://www.ubuntu.com/usn/usn-618-1 http://secunia.com/advisories/30818 http://secunia.com/advisories/30769 http://www.mandriva.com/security/advisories?name=MDVSA-2008:167 http://secunia.com/advisories/30890 http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.html http://secunia.com/advisories/30962 http://secunia.com/advisories/31246 http://lists.vmware.com/pipermail/security-announce/2008/000023.html http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html http://www.mandriva.com/security/advisories?name=MDVSA-2008:104 http://www.debian.org/security/2008/dsa-1565 http://secunia.com/advisories/30018 http://secunia.com/advisories/30110 http://secunia.com/advisories/30116 http://secunia.com/advisories/30112 http://www.vupen.com/english/advisories/2008/1452/references http://www.vupen.com/english/advisories/2008/2222/references http://www.vupen.com/english/advisories/2008/1406/references https://exchange.xforce.ibmcloud.com/vulnerabilities/42131 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11843 https://usn.ubuntu.com/614-1/http://www.securityfocus.com/archive/1/491732/100/0/threaded http://www.securityfocus.com/archive/1/491566/100/0/threaded https://nvd.nist.gov https://usn.ubuntu.com/618-1/

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook