Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:3894
HistoryAug 22, 2008 - 12:00 a.m.

Linux Kernel Driver Fault Handler 'mmap.c' Local Denial of Service Vulnerability

2008-08-2200:00:00
Root
www.seebug.org
23

0.0004 Low

EPSS

Percentile

10.1%

JSON

CVE-2008-0007

Linux内核本地拒绝服务漏洞,因为它未能适当范围内检查某些故障处理的设备驱动程序。

攻击者可以利用这个问题来触发内核崩溃,这个问题,攻击者也可以执行任意代码,但这并没有得到证实。

之前的版本的Linux内核2.6.24.1存在此漏洞的。

VMWare ESX Server 3.0.2
VMWare ESX Server 3.0.1
VMWare ESX Server 2.5.5
VMWare ESX Server 2.5.4
VMWare ESX Server 3.5
Ubuntu Ubuntu Linux 7.10 sparc
Ubuntu Ubuntu Linux 7.10 powerpc
Ubuntu Ubuntu Linux 7.10 lpia
Ubuntu Ubuntu Linux 7.10 i386
Ubuntu Ubuntu Linux 7.10 amd64
Ubuntu Ubuntu Linux 7.04 sparc
Ubuntu Ubuntu Linux 7.04 powerpc
Ubuntu Ubuntu Linux 7.04 i386
Ubuntu Ubuntu Linux 7.04 amd64
Ubuntu Ubuntu Linux 6.06 LTS sparc
Ubuntu Ubuntu Linux 6.06 LTS powerpc
Ubuntu Ubuntu Linux 6.06 LTS i386
Ubuntu Ubuntu Linux 6.06 LTS amd64
SuSE SLES 9
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Novell Linux POS 9
S.u.S.E. Novell Linux Desktop 9
RedHat Enterprise Linux WS 4
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux Desktop 5 client
RedHat Enterprise Linux AS 4
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux 5 server
RedHat Desktop 4.0
RedHat Desktop 3.0
MandrakeSoft Linux Mandrake 2007.1 x86_64
MandrakeSoft Linux Mandrake 2007.1
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Linux kernel 2.6.24 -rc5
Linux kernel 2.6.24 -rc4
Linux kernel 2.6.24 -rc3
Linux kernel 2.6.23 .7
Linux kernel 2.6.23 .6
Linux kernel 2.6.23 .5
Linux kernel 2.6.23 .4
Linux kernel 2.6.23 .3
Linux kernel 2.6.23 .2
Linux kernel 2.6.23 -rc2
Linux kernel 2.6.23 -rc1
Linux kernel 2.6.23
Linux kernel 2.6.24-rc2
Linux kernel 2.6.24-rc1
Linux kernel 2.6.23.10
Linux kernel 2.6.23.1
Linux kernel 2.6.23.09
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Avaya Voice Portal 4.1
Avaya Voice Portal 4.0
Avaya Voice Portal 3.0
Avaya SIP Enablement Services 3.1.1
Avaya SIP Enablement Services 5.0
Avaya SIP Enablement Services 4.0
Avaya SIP Enablement Services 3.1
Avaya SIP Enablement Services 3.0
Avaya SES 3.1.2
Avaya SES 3.1.1
Avaya SES 4.0
Avaya SES 3.1
Avaya SES 3.0
Avaya Messaging Storage Server MSS 3.0
Avaya Messaging Storage Server MM3.0
Avaya Messaging Storage Server 3.1
Avaya Message Networking MN 3.1
Avaya Message Networking 3.1
Avaya Intuity AUDIX LX 2.0
Avaya EMMC 1.021
Avaya EMMC 1.017
Avaya Communication Manager 5.0
Avaya Communication Manager 4.0
Avaya Communication Manager 3.1
Avaya Communication Manager 3.0

  • Avaya Communication Manager Server DEFINITY Server SI/CS
  • Avaya Communication Manager Server S8100
  • Avaya Communication Manager Server S8100
  • Avaya Communication Manager Server S8300
  • Avaya Communication Manager Server S8300
  • Avaya Communication Manager Server S8500
  • Avaya Communication Manager Server S8500
  • Avaya Communication Manager Server S8700
  • Avaya Communication Manager Server S8700
    Avaya AES 4.2
    Avaya AES 4.0

Solution:
This issue was addressed in Linux kernel 2.6.24.1. Please see the references for more information.

Linux kernel 2.6.23.1

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.24-rc2

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23.09

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 .5

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 -rc1

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 .7

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 .2

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 .3

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 -rc2

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.23 .6

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.24 -rc3

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.24 -rc5

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Linux kernel 2.6.24 -rc4

Linux patch-2.6.24.1.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2</a>

Related

securityvulns 4
ubuntucve 1
veracode 1
prion 1
cvelist 1
nvd 1
cve 1
openvas 36
nessus 26
osv 4
debian 4
suse 2
redhat 5
oraclelinux 4
centos 4
ubuntu 1
vmware 2
securityvulns
securityvulns
Linux kernel information leak
2008-03-21 00:00:00
[ MDVSA-2008:072 ] - Updated kernel packages fix vulnerability
2008-03-21 00:00:00
Linux multiple security vulnerabilities
2008-05-02 00:00:00
ubuntucve
ubuntucve
CVE-2008-0007
2008-02-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:27:33
prion
prion
Design/Logic Flaw
2008-02-08 02:00:00
cvelist
cvelist
CVE-2008-0007
2008-02-08 01:00:00
nvd
nvd
CVE-2008-0007
2008-02-08 02:00:00
cve
cve
CVE-2008-0007
2008-02-08 02:00:00
openvas
openvas
Debian: Security Advisory (DSA-1565-1)
2008-05-12 00:00:00
Debian Security Advisory DSA 1565-1 (linux-2.6)
2008-05-12 00:00:00
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
nessus
nessus
openSUSE 10 Security Update : kernel (kernel-4941)
2008-02-01 00:00:00
SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 4938)
2012-05-17 00:00:00
Debian DSA-1565-1 : linux-2.6 - several vulnerabilities
2008-05-02 00:00:00
osv
osv
linux-2.6 - several vulnerabilities
2008-05-01 00:00:00
kernelimage-2.4.27 - several issues
2008-02-22 00:00:00
kernel-source-2.4.27 - several vulnerabilities
2008-02-22 00:00:00
debian
debian
[SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-05-01 18:25:04
[SECURITY] [DSA 1504-1] New Linux kernel 2.6.8 packages fix several issues
2008-02-22 21:27:33
[SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues
2008-03-06 07:47:54
suse
suse
remote denial of service in kernel
2008-03-28 14:11:32
local privilege escalation in kernel
2008-02-07 11:18:53
redhat
redhat
(RHSA-2008:0233) Important: kernel security and bug fix update
2008-05-07 00:00:00
(RHSA-2008:0237) Important: kernel security and bug fix update
2008-05-07 00:00:00
(RHSA-2008:0211) Important: kernel security and bug fix update
2008-05-07 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2008-05-08 00:00:00
kernel security and bug fix update
2008-05-07 00:00:00
kernel security and bug fix update
2008-05-07 00:00:00
centos
centos
kernel security update
2008-05-09 09:41:42
kernel security update
2008-05-10 02:08:23
kernel security update
2008-05-07 14:58:01
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-06-19 00:00:00
vmware
vmware
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for SSV:3894
securityvulns4ubuntucve1veracode1prion1cvelist1nvd1cve1openvas36nessus26osv4debian4suse2redhat5oraclelinux4centos4ubuntu1vmware2