CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
28.4%
The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | 2.6.15.4 | cpe:/o:linux:linux_kernel:2.6.15.4::: |
linux | linux_kernel | 2.6.16.16 | cpe:/o:linux:linux_kernel:2.6.16.16::: |
linux | linux_kernel | 2.6.12.1 | cpe:/o:linux:linux_kernel:2.6.12.1::: |
linux | linux_kernel | 2.6.14.3 | cpe:/o:linux:linux_kernel:2.6.14.3::: |
linux | linux_kernel | 2.6.16.5 | cpe:/o:linux:linux_kernel:2.6.16.5::: |
linux | linux_kernel | 2.6.11.7 | cpe:/o:linux:linux_kernel:2.6.11.7::: |
linux | linux_kernel | 2.6.16.28 | cpe:/o:linux:linux_kernel:2.6.16.28::: |
linux | linux_kernel | 2.6.15.1 | cpe:/o:linux:linux_kernel:2.6.15.1::: |
linux | linux_kernel | 2.6.8.1 | cpe:/o:linux:linux_kernel:2.6.8.1::: |
linux | linux_kernel | 2.6.11.5 | cpe:/o:linux:linux_kernel:2.6.11.5::: |
lkml.org/lkml/2006/6/16/6
secunia.com/advisories/21515
secunia.com/advisories/21695
secunia.com/advisories/21711
secunia.com/advisories/21934
secunia.com/advisories/22093
secunia.com/advisories/22382
secunia.com/advisories/23474
secunia.com/advisories/27227
secunia.com/advisories/31229
secunia.com/advisories/31685
support.avaya.com/elmodocs2/security/ASA-2008-365.htm
www.debian.org/security/2006/dsa-1184
www.mandriva.com/security/advisories?name=MDKSA-2006:182
www.mandriva.com/security/advisories?name=MDKSA-2007:025
www.novell.com/linux/security/advisories/2006_79_kernel.html
www.novell.com/linux/security/advisories/2007_53_kernel.html
www.redhat.com/support/errata/RHSA-2008-0665.html
www.securityfocus.com/archive/1/444887/100/0/threaded
www.securityfocus.com/bid/19562
www.ubuntu.com/usn/usn-346-1
www.vupen.com/english/advisories/2006/3308
issues.rpath.com/browse/RPL-611
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10796
More