Published: 11/09/2008 Updated: 07/11/2023

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 829

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in nfsd in the Linux kernel prior to 2.6.26.4, when NFSv4 is enabled, allows remote malicious users to have an unknown impact via vectors related to decoding an NFSv4 acl.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.22.15
linux linux kernel 2.6.24.7
linux linux kernel 2.6.23.13
linux linux kernel 2.6.24.2
linux linux kernel 2.6.22.21
linux linux kernel 2.6.25.5
linux linux kernel 2.6.23.8
linux linux kernel 2.6.22.12
linux linux kernel 2.6.21.6
linux linux kernel 2.6.23.16
linux linux kernel 2.6.24.1
linux linux kernel 2.6.22
linux linux kernel 2.6.20.16
linux linux kernel 2.6.25.9
linux linux kernel 2.6.19.4
linux linux kernel 2.6.25.13
linux linux kernel 2.6.20.21
linux linux kernel 2.6.25.3
linux linux kernel 2.6.24
linux linux kernel 2.6.20.17
linux linux kernel 2.6.21.5
linux linux kernel 2.6.25.15
linux linux kernel 2.6.23.15
linux linux kernel 2.6.23.10
linux linux kernel 2.6.20.20
linux linux kernel 2.6.22.18
linux linux kernel 2.6.25.8
linux linux kernel 2.6.22.20
linux linux kernel 2.6.20.18
linux linux kernel 2.6.23.9
linux linux kernel 2.6.24.4
linux linux kernel 2.6.22.9
linux linux kernel 2.6.22.13
linux linux kernel 2.6.19.7
linux linux kernel 2.6.24.5
linux linux kernel 2.6.20.19
linux linux kernel 2.6.22.17
linux linux kernel 2.6.25.10
linux linux kernel 2.6.22.11
linux linux kernel 2.6.23
linux linux kernel 2.6.22.10
linux linux kernel 2.6.23.17
linux linux kernel 2.6.25.1
linux linux kernel 2.6.25.4
linux linux kernel 2.6.21.7
linux linux kernel 2.6.22.22
linux linux kernel 2.6.24.6
linux linux kernel 2.6.23.12
linux linux kernel 2.6.25.11
linux linux kernel 2.6.22.8
linux linux kernel 2.6.19.5
linux linux kernel 2.6.18
linux linux kernel 2.6.22.2
linux linux kernel 2.6.22.19
linux linux kernel 2.6.24.3
linux linux kernel 2.6.25
linux linux kernel 2.6.25.2
linux linux kernel 2.6.25.7
linux linux kernel 2.6.25.14
linux linux kernel 2.6.25.12
linux linux kernel 2.6.25.6
linux linux kernel 2.6.23.11
linux linux kernel 2.6.22.14

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues and several bugsare now available for Red Hat Enterprise MRG 10This update has been rated as having important security impact by the RedHat Secur ...

It was discovered that the direct-IO subsystem did not correctly validate certain structures A local attacker could exploit this to cause a system crash, leading to a denial of service (CVE-2007-6716) ...

CWE-119 http://www.openwall.com/lists/oss-security/2008/09/04/18 http://lkml.org/lkml/2008/9/3/286 https://bugzilla.redhat.com/show_bug.cgi?id=461101 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.26.4 http://www.openwall.com/lists/oss-security/2008/09/04/4 http://www.debian.org/security/2008/dsa-1636 http://secunia.com/advisories/31881 http://www.securityfocus.com/bid/31133 http://www.redhat.com/support/errata/RHSA-2008-0857.html http://secunia.com/advisories/32190 http://www.ubuntu.com/usn/usn-659-1 http://secunia.com/advisories/32393 https://exchange.xforce.ibmcloud.com/vulnerabilities/45055 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=91b80969ba466ba4b915a4a1d03add8c297add3f https://access.redhat.com/errata/RHSA-2008:0857 https://usn.ubuntu.com/659-1/https://nvd.nist.gov

CVE-2008-3915

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect