Published: 14/08/2009 Updated: 07/11/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The init_posix_timers function in kernel/posix-timers.c in the Linux kernel prior to 2.6.31-rc6 allows local users to cause a denial of service (OOPS) or possibly gain privileges via a CLOCK_MONOTONIC_RAW clock_nanosleep call that triggers a NULL pointer dereference.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.11
linux linux kernel 2.6.16.16
linux linux kernel 2.6.11.2
linux linux kernel 2.6.15.3
linux linux kernel 2.6.11.10
linux linux kernel 2.6.1
linux linux kernel 2.6.14.7
linux linux kernel 2.6.13
linux linux kernel 2.6.13.3
linux linux kernel 2.6.11.8
linux linux kernel 2.6.14.4
linux linux kernel 2.6.14
linux linux kernel 2.6.16.31
linux linux kernel 2.6.16.18
linux linux kernel 2.6.10
linux linux kernel 2.6.14.3
linux linux kernel 2.6.11.6
linux linux kernel 2.6.11.11
linux linux kernel 2.6.16.13
linux linux kernel 2.6.16.15
linux linux kernel 2.6.15.6
linux linux kernel 2.6.15.1
linux linux kernel 2.6.11.5
linux linux kernel 2.6.16.1
linux linux kernel 2.6.14.5
linux linux kernel 2.6.13.2
linux linux kernel 2.6.13.5
linux linux kernel 2.6.16.11
linux linux kernel 2.6.16.14
linux linux kernel 2.6.16.25
linux linux kernel 2.6.16.21
linux linux kernel 2.6.16.28
linux linux kernel 2.6.14.1
linux linux kernel 2.6.16.23
linux linux kernel 2.6.12.5
linux linux kernel 2.6.15.7
linux linux kernel 2.6.16.3
linux linux kernel 2.6.14.6
linux linux kernel 2.6.12.1
linux linux kernel 2.6.11.9
linux linux kernel 2.6.0
linux linux kernel 2.6.13.4
linux linux kernel 2.6.12.2
linux linux kernel 2.6.16.26
linux linux kernel 2.6.16.29
linux linux kernel 2.6.16
linux linux kernel 2.6.15.2
linux linux kernel 2.6.16.22
linux linux kernel 2.6.16.10
linux linux kernel 2.6.12.4
linux linux kernel 2.6.11.3
linux linux kernel 2.6.16.24
linux kernel 2.6.24.7
linux linux kernel 2.6.12.3
linux linux kernel 2.6.16.30
linux linux kernel 2.6.15.4
linux linux kernel 2.6.16.17
linux linux kernel 2.6.16.12
linux linux kernel 2.6.16.27
linux linux kernel 2.6.12.6
linux linux kernel
linux linux kernel 2.6.11.7
linux linux kernel 2.6.16.2
linux linux kernel 2.6.15
linux kernel 2.6.25.15
linux linux kernel 2.6.14.2
linux linux kernel 2.6.11.4
linux linux kernel 2.6.16.19
linux linux kernel 2.6.11.12
linux linux kernel 2.6.16.20
linux linux kernel 2.6.15.5
linux linux kernel 2.6.11.1
linux linux kernel 2.6.13.1
linux linux kernel 2.6
linux linux kernel 2.6.12

Solar Designer discovered that the z90crypt driver did not correctly check capabilities A local attacker could exploit this to shut down the device, leading to a denial of service Only affected Ubuntu 606 (CVE-2009-1883) ...

/* source: wwwsecurityfocuscom/bid/35976/info The Linux kernel is prone to a local denial-of-service vulnerability Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users Given the nature of this issue, attackers may also be able to execute arbitrary code, but this has not been confirmed Thi ...

CWE-119 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc6 http://secunia.com/advisories/36200 http://www.vupen.com/english/advisories/2009/2197 http://lkml.org/lkml/2009/8/4/28 http://lkml.org/lkml/2009/8/4/40 http://www.openwall.com/lists/oss-security/2009/08/06/2 http://secunia.com/advisories/37105 http://www.ubuntu.com/usn/USN-852-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/52317 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=70d715fd0597f18528f389b5ac59102263067744 https://nvd.nist.gov https://usn.ubuntu.com/852-1/https://www.exploit-db.com/exploits/33148/

CVE-2009-2767

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect