Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-5029
HistoryNov 10, 2008 - 4:15 p.m.

CVE-2008-5029

2008-11-1016:15:12
[email protected]
web.nvd.nist.gov
1

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

JSON

The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2.6.26, and earlier makes indirect recursive calls to itself through calls to the fput function, which allows local users to cause a denial of service (panic) via vectors related to sending an SCM_RIGHTS message through a UNIX domain socket and closing file descriptors.

Affected configurations

NVD
Node
linuxlinux_kernelRange2.6.27.4
OR
linuxlinux_kernelMatch2.2.27
OR
linuxlinux_kernelMatch2.4.36
OR
linuxlinux_kernelMatch2.4.36.1
OR
linuxlinux_kernelMatch2.4.36.2
OR
linuxlinux_kernelMatch2.4.36.3
OR
linuxlinux_kernelMatch2.4.36.4
OR
linuxlinux_kernelMatch2.4.36.5
OR
linuxlinux_kernelMatch2.4.36.6
OR
linuxlinux_kernelMatch2.6
OR
linuxlinux_kernelMatch2.6.18
OR
linuxlinux_kernelMatch2.6.18rc1
OR
linuxlinux_kernelMatch2.6.18rc2
OR
linuxlinux_kernelMatch2.6.18rc3
OR
linuxlinux_kernelMatch2.6.18rc4
OR
linuxlinux_kernelMatch2.6.18rc5
OR
linuxlinux_kernelMatch2.6.18rc6
OR
linuxlinux_kernelMatch2.6.18rc7
OR
linuxlinux_kernelMatch2.6.19.4
OR
linuxlinux_kernelMatch2.6.19.5
OR
linuxlinux_kernelMatch2.6.19.6
OR
linuxlinux_kernelMatch2.6.19.7
OR
linuxlinux_kernelMatch2.6.20.16
OR
linuxlinux_kernelMatch2.6.20.17
OR
linuxlinux_kernelMatch2.6.20.18
OR
linuxlinux_kernelMatch2.6.20.19
OR
linuxlinux_kernelMatch2.6.20.20
OR
linuxlinux_kernelMatch2.6.20.21
OR
linuxlinux_kernelMatch2.6.21.5
OR
linuxlinux_kernelMatch2.6.21.6
OR
linuxlinux_kernelMatch2.6.21.7
OR
linuxlinux_kernelMatch2.6.22
OR
linuxlinux_kernelMatch2.6.22.1
OR
linuxlinux_kernelMatch2.6.22.2
OR
linuxlinux_kernelMatch2.6.22.8
OR
linuxlinux_kernelMatch2.6.22.9
OR
linuxlinux_kernelMatch2.6.22.10
OR
linuxlinux_kernelMatch2.6.22.11
OR
linuxlinux_kernelMatch2.6.22.12
OR
linuxlinux_kernelMatch2.6.22.13
OR
linuxlinux_kernelMatch2.6.22.14
OR
linuxlinux_kernelMatch2.6.22.15
OR
linuxlinux_kernelMatch2.6.22.17
OR
linuxlinux_kernelMatch2.6.22.18
OR
linuxlinux_kernelMatch2.6.22.19
OR
linuxlinux_kernelMatch2.6.22.20
OR
linuxlinux_kernelMatch2.6.22.21
OR
linuxlinux_kernelMatch2.6.22.22
OR
linuxlinux_kernelMatch2.6.22_rc1
OR
linuxlinux_kernelMatch2.6.22_rc7
OR
linuxlinux_kernelMatch2.6.23
OR
linuxlinux_kernelMatch2.6.23.8
OR
linuxlinux_kernelMatch2.6.23.9
OR
linuxlinux_kernelMatch2.6.23.10
OR
linuxlinux_kernelMatch2.6.23.11
OR
linuxlinux_kernelMatch2.6.23.12
OR
linuxlinux_kernelMatch2.6.23.13
OR
linuxlinux_kernelMatch2.6.23.15
OR
linuxlinux_kernelMatch2.6.23.16
OR
linuxlinux_kernelMatch2.6.23.17
OR
linuxlinux_kernelMatch2.6.23_rc1
OR
linuxlinux_kernelMatch2.6.24
OR
linuxlinux_kernelMatch2.6.24.1
OR
linuxlinux_kernelMatch2.6.24.2
OR
linuxlinux_kernelMatch2.6.24.3
OR
linuxlinux_kernelMatch2.6.24.4
OR
linuxlinux_kernelMatch2.6.24.5
OR
linuxlinux_kernelMatch2.6.24.6
OR
linuxlinux_kernelMatch2.6.24.7
OR
linuxlinux_kernelMatch2.6.24_rc1
OR
linuxlinux_kernelMatch2.6.24_rc4
OR
linuxlinux_kernelMatch2.6.24_rc5
OR
linuxlinux_kernelMatch2.6.25
OR
linuxlinux_kernelMatch2.6.25x86_64
OR
linuxlinux_kernelMatch2.6.25.1
OR
linuxlinux_kernelMatch2.6.25.1x86_64
OR
linuxlinux_kernelMatch2.6.25.2
OR
linuxlinux_kernelMatch2.6.25.2x86_64
OR
linuxlinux_kernelMatch2.6.25.3
OR
linuxlinux_kernelMatch2.6.25.3x86_64
OR
linuxlinux_kernelMatch2.6.25.4
OR
linuxlinux_kernelMatch2.6.25.4x86_64
OR
linuxlinux_kernelMatch2.6.25.5
OR
linuxlinux_kernelMatch2.6.25.5x86_64
OR
linuxlinux_kernelMatch2.6.25.6
OR
linuxlinux_kernelMatch2.6.25.6x86_64
OR
linuxlinux_kernelMatch2.6.25.7
OR
linuxlinux_kernelMatch2.6.25.7x86_64
OR
linuxlinux_kernelMatch2.6.25.8
OR
linuxlinux_kernelMatch2.6.25.8x86_64
OR
linuxlinux_kernelMatch2.6.25.9
OR
linuxlinux_kernelMatch2.6.25.9x86_64
OR
linuxlinux_kernelMatch2.6.25.10
OR
linuxlinux_kernelMatch2.6.25.10x86_64
OR
linuxlinux_kernelMatch2.6.25.11
OR
linuxlinux_kernelMatch2.6.25.11x86_64
OR
linuxlinux_kernelMatch2.6.25.12
OR
linuxlinux_kernelMatch2.6.25.12x86_64
OR
linuxlinux_kernelMatch2.6.25.13
OR
linuxlinux_kernelMatch2.6.25.14
OR
linuxlinux_kernelMatch2.6.25.15
OR
linuxlinux_kernelMatch2.6.25.16
OR
linuxlinux_kernelMatch2.6.25.17
OR
linuxlinux_kernelMatch2.6.26
OR
linuxlinux_kernelMatch2.6.26rc4
OR
linuxlinux_kernelMatch2.6.26.1
OR
linuxlinux_kernelMatch2.6.26.2
OR
linuxlinux_kernelMatch2.6.26.3
OR
linuxlinux_kernelMatch2.6.26.4
OR
linuxlinux_kernelMatch2.6.26.5
OR
linuxlinux_kernelMatch2.6.27
OR
linuxlinux_kernelMatch2.6.27.1
OR
linuxlinux_kernelMatch2.6.27.2
OR
linuxlinux_kernelMatch2.6.27.3

References

Related

cvelist 2
cve 2
prion 2
seebug 1
securityvulns 3
ubuntucve 2
veracode 1
nvd 1
openvas 39
nessus 22
redhat 5
suse 4
centos 2
oraclelinux 3
debian 2
vmware 1
ubuntu 1
osv 2
cvelist
cvelist
CVE-2008-5029
2008-11-10 16:00:00
CVE-2008-5300
2008-12-01 17:00:00
cve
cve
CVE-2008-5029
2008-11-10 16:15:12
CVE-2008-5300
2008-12-01 17:30:00
prion
prion
Design/Logic Flaw
2008-11-10 16:15:00
Design/Logic Flaw
2008-12-01 17:30:00
seebug
seebug
Linux Kernel __scm_destroy()本地拒绝服务漏洞
2008-11-12 00:00:00
securityvulns
securityvulns
Linux kernel DoS
2009-01-04 00:00:00
Linux kernel multiple security vulnerabilities
2008-11-24 00:00:00
[ MDVSA-2008:234 ] kernel
2008-11-24 00:00:00
ubuntucve
ubuntucve
CVE-2008-5029
2008-11-10 00:00:00
CVE-2008-5300
2008-12-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:29:20
nvd
nvd
CVE-2008-5300
2008-12-01 17:30:00
openvas
openvas
Mandriva Update for kernel MDVSA-2008:234 (kernel)
2009-04-09 00:00:00
Mandrake Security Advisory MDVSA-2009:032 (kernel)
2009-02-02 00:00:00
RedHat Security Advisory RHSA-2009:0225
2009-01-26 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : kernel (MDVSA-2009:032)
2009-04-23 00:00:00
Mandriva Linux Security Advisory : kernel (MDVSA-2008:234)
2009-04-23 00:00:00
RHEL 5 : kernel (RHSA-2009:0225)
2009-01-21 00:00:00
redhat
redhat
(RHSA-2009:0021) Important: kernel security update
2009-02-24 00:00:00
(RHSA-2009:0225) Important: Red Hat Enterprise Linux 5.3 kernel security and bug fix update
2009-01-20 00:00:00
(RHSA-2009:0014) Important: kernel security and bug fix update
2009-01-14 00:00:00
suse
suse
denial of service in kernel
2008-12-04 18:25:26
local privilege escalation in kernel
2009-01-29 16:12:11
local privilege escalation in kernel
2009-01-21 20:06:24
centos
centos
kernel security update
2009-01-15 13:41:46
kernel security update
2009-11-04 00:55:32
oraclelinux
oraclelinux
kernel security and bug fix update
2009-01-15 00:00:00
kernel security and bug fix update
2009-11-04 00:00:00
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2009-01-27 00:00:00
debian
debian
[SECURITY] [DSA 1687-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-12-15 21:33:39
[SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities
2008-12-04 17:59:11
vmware
vmware
ESX 3.5 third party update for Service Console kernel
2010-06-24 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-11-27 00:00:00
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2008-12-15 00:00:00
linux-2.6.24 - several vulnerabilities
2008-12-04 00:00:00

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for NVD:CVE-2008-5029
cvelist2cve2prion2seebug1securityvulns3ubuntucve2veracode1nvd1openvas39nessus22redhat5suse4centos2oraclelinux3debian2vmware1ubuntu1osv2