CVE-2008-0007

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.
References
Link Resource
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html
http://lists.vmware.com/pipermail/security-announce/2008/000023.html
http://lkml.org/lkml/2008/2/6/457 Exploit
http://secunia.com/advisories/28806
http://secunia.com/advisories/28826
http://secunia.com/advisories/29058
http://secunia.com/advisories/29570
http://secunia.com/advisories/30018
http://secunia.com/advisories/30110
http://secunia.com/advisories/30112
http://secunia.com/advisories/30116
http://secunia.com/advisories/30769
http://secunia.com/advisories/31246
http://secunia.com/advisories/33280
http://securitytracker.com/id?1019357
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048
http://www.debian.org/security/2008/dsa-1503
http://www.debian.org/security/2008/dsa-1504
http://www.debian.org/security/2008/dsa-1565
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.17 Exploit
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1
http://www.mandriva.com/security/advisories?name=MDVSA-2008:044
http://www.mandriva.com/security/advisories?name=MDVSA-2008:072
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112
http://www.mandriva.com/security/advisories?name=MDVSA-2008:174
http://www.redhat.com/support/errata/RHSA-2008-0211.html
http://www.redhat.com/support/errata/RHSA-2008-0233.html
http://www.redhat.com/support/errata/RHSA-2008-0237.html
http://www.redhat.com/support/errata/RHSA-2008-0787.html
http://www.securityfocus.com/archive/1/487808/100/0/threaded
http://www.securityfocus.com/bid/27686
http://www.securityfocus.com/bid/27705
http://www.ubuntu.com/usn/usn-618-1
http://www.vupen.com/english/advisories/2008/0445/references
http://www.vupen.com/english/advisories/2008/2222/references
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9412
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html
http://lists.vmware.com/pipermail/security-announce/2008/000023.html
http://lkml.org/lkml/2008/2/6/457 Exploit
http://secunia.com/advisories/28806
http://secunia.com/advisories/28826
http://secunia.com/advisories/29058
http://secunia.com/advisories/29570
http://secunia.com/advisories/30018
http://secunia.com/advisories/30110
http://secunia.com/advisories/30112
http://secunia.com/advisories/30116
http://secunia.com/advisories/30769
http://secunia.com/advisories/31246
http://secunia.com/advisories/33280
http://securitytracker.com/id?1019357
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048
http://www.debian.org/security/2008/dsa-1503
http://www.debian.org/security/2008/dsa-1504
http://www.debian.org/security/2008/dsa-1565
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.17 Exploit
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1
http://www.mandriva.com/security/advisories?name=MDVSA-2008:044
http://www.mandriva.com/security/advisories?name=MDVSA-2008:072
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112
http://www.mandriva.com/security/advisories?name=MDVSA-2008:174
http://www.redhat.com/support/errata/RHSA-2008-0211.html
http://www.redhat.com/support/errata/RHSA-2008-0233.html
http://www.redhat.com/support/errata/RHSA-2008-0237.html
http://www.redhat.com/support/errata/RHSA-2008-0787.html
http://www.securityfocus.com/archive/1/487808/100/0/threaded
http://www.securityfocus.com/bid/27686
http://www.securityfocus.com/bid/27705
http://www.ubuntu.com/usn/usn-618-1
http://www.vupen.com/english/advisories/2008/0445/references
http://www.vupen.com/english/advisories/2008/2222/references
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9412
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:40

Type Values Removed Values Added
References () http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html - () http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html -
References () http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html - () http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html -
References () http://lists.vmware.com/pipermail/security-announce/2008/000023.html - () http://lists.vmware.com/pipermail/security-announce/2008/000023.html -
References () http://lkml.org/lkml/2008/2/6/457 - Exploit () http://lkml.org/lkml/2008/2/6/457 - Exploit
References () http://secunia.com/advisories/28806 - () http://secunia.com/advisories/28806 -
References () http://secunia.com/advisories/28826 - () http://secunia.com/advisories/28826 -
References () http://secunia.com/advisories/29058 - () http://secunia.com/advisories/29058 -
References () http://secunia.com/advisories/29570 - () http://secunia.com/advisories/29570 -
References () http://secunia.com/advisories/30018 - () http://secunia.com/advisories/30018 -
References () http://secunia.com/advisories/30110 - () http://secunia.com/advisories/30110 -
References () http://secunia.com/advisories/30112 - () http://secunia.com/advisories/30112 -
References () http://secunia.com/advisories/30116 - () http://secunia.com/advisories/30116 -
References () http://secunia.com/advisories/30769 - () http://secunia.com/advisories/30769 -
References () http://secunia.com/advisories/31246 - () http://secunia.com/advisories/31246 -
References () http://secunia.com/advisories/33280 - () http://secunia.com/advisories/33280 -
References () http://securitytracker.com/id?1019357 - () http://securitytracker.com/id?1019357 -
References () http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048 - () http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048 -
References () http://www.debian.org/security/2008/dsa-1503 - () http://www.debian.org/security/2008/dsa-1503 -
References () http://www.debian.org/security/2008/dsa-1504 - () http://www.debian.org/security/2008/dsa-1504 -
References () http://www.debian.org/security/2008/dsa-1565 - () http://www.debian.org/security/2008/dsa-1565 -
References () http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.17 - Exploit () http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.17 - Exploit
References () http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1 - () http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:044 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:044 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:072 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:072 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:112 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:112 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:174 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:174 -
References () http://www.redhat.com/support/errata/RHSA-2008-0211.html - () http://www.redhat.com/support/errata/RHSA-2008-0211.html -
References () http://www.redhat.com/support/errata/RHSA-2008-0233.html - () http://www.redhat.com/support/errata/RHSA-2008-0233.html -
References () http://www.redhat.com/support/errata/RHSA-2008-0237.html - () http://www.redhat.com/support/errata/RHSA-2008-0237.html -
References () http://www.redhat.com/support/errata/RHSA-2008-0787.html - () http://www.redhat.com/support/errata/RHSA-2008-0787.html -
References () http://www.securityfocus.com/archive/1/487808/100/0/threaded - () http://www.securityfocus.com/archive/1/487808/100/0/threaded -
References () http://www.securityfocus.com/bid/27686 - () http://www.securityfocus.com/bid/27686 -
References () http://www.securityfocus.com/bid/27705 - () http://www.securityfocus.com/bid/27705 -
References () http://www.ubuntu.com/usn/usn-618-1 - () http://www.ubuntu.com/usn/usn-618-1 -
References () http://www.vupen.com/english/advisories/2008/0445/references - () http://www.vupen.com/english/advisories/2008/0445/references -
References () http://www.vupen.com/english/advisories/2008/2222/references - () http://www.vupen.com/english/advisories/2008/2222/references -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9412 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9412 -

Information

Published : 2008-02-08 02:00

Updated : 2024-11-21 00:40


NVD link : CVE-2008-0007

Mitre link : CVE-2008-0007

CVE.ORG link : CVE-2008-0007


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-399

Resource Management Errors