Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-2908
HistoryOct 13, 2009 - 10:30 a.m.

CVE-2009-2908

2009-10-1310:30:00
[email protected]
web.nvd.nist.gov
3

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON

The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a β€œnegative dentry” and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount.

Affected configurations

NVD
Node
linuxlinux_kernelMatch2.6.31

References

Related

seebug 2
prion 1
veracode 1
cvelist 1
cve 1
ubuntucve 1
nessus 16
openvas 36
oraclelinux 2
centos 1
redhat 2
fedora 8
osv 2
debian 2
securityvulns 2
ubuntu 1
vmware 4
seebug
seebug
Linux Kernel eCryptfs NullζŒ‡ι’ˆεΌ•η”¨ζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-10-09 00:00:00
Linux Kernel eCryptfsη©ΊζŒ‡ι’ˆεΌ•η”¨ζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-10-12 00:00:00
prion
prion
Null pointer dereference
2009-10-13 10:30:00
veracode
veracode
Privilege Escalation
2020-04-10 00:39:02
cvelist
cvelist
CVE-2009-2908
2009-10-13 10:00:00
cve
cve
CVE-2009-2908
2009-10-13 10:30:00
ubuntucve
ubuntucve
CVE-2009-2908
2009-10-13 00:00:00
nessus
nessus
Fedora 10 : kernel-2.6.27.37-170.2.104.fc10 (2009-10525)
2009-10-16 00:00:00
Mandriva Linux Security Advisory : kernel (MDVSA-2009:289)
2009-10-28 00:00:00
Fedora 11 : kernel-2.6.30.9-90.fc11 (2009-10639)
2009-10-28 00:00:00
openvas
openvas
Mandriva Security Advisory MDVSA-2009:289 (kernel)
2009-11-11 00:00:00
Mandriva Security Advisory MDVSA-2009:289 (kernel)
2009-11-11 00:00:00
CentOS Update for kernel CESA-2009:1548 centos5 i386
2011-08-09 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2009-11-03 00:00:00
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2010-04-05 00:00:00
centos
centos
kernel security update
2009-11-04 19:57:14
redhat
redhat
(RHSA-2009:1548) Important: kernel security and bug fix update
2009-11-03 00:00:00
(RHSA-2009:1692) Important: rhev-hypervisor security and bug fix update
2009-12-23 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: kernel-2.6.30.9-90.fc11
2009-10-27 06:48:07
[SECURITY] Fedora 11 Update: kernel-2.6.30.9-96.fc11
2009-11-06 00:03:20
[SECURITY] Fedora 11 Update: kernel-2.6.30.9-102.fc11
2009-12-07 07:27:49
osv
osv
linux-2.6 - several vulnerabilities
2009-10-22 00:00:00
linux-2.6.24 - several vulnerabilities
2009-11-05 00:00:00
debian
debian
[SECURITY] [DSA 1915-1] New Linux 2.6.26 packages fix several vulnerabilities
2009-10-23 15:58:04
[SECURITY] [DSA 1928-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-11-05 22:03:48
securityvulns
securityvulns
[SECURITY] [DSA 1915-1] New Linux 2.6.26 packages fix several vulnerabilities
2009-10-23 00:00:00
Linux kernel multiple security vulnerabilities
2009-11-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-10-22 00:00:00
vmware
vmware
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON
Related for NVD:CVE-2009-2908
seebug2prion1veracode1cvelist1cve1ubuntucve1nessus16openvas36oraclelinux2centos1redhat2fedora8osv2debian2securityvulns2ubuntu1vmware4