Lucene search

Veracode Vulnerability DatabaseVERACODE:23457

HistoryApr 10, 2020 - 12:27 a.m.

Privilege Escalation

2020-04-1000:27:36

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.0005 Low

EPSS

Percentile

18.8%

JSON

kernel is vulnerable to privilege escalation. The vulnerability exists as the absence of a protection mechanism when attempting to access a critical section of code, as well as a race condition, have been found in the Linux kernel file system event notifier, dnotify. This could allow a local unprivileged user to get inconsistent data, or to send arbitrary signals to arbitrary system processes.

CPENameOperatorVersion
kerneleq2.6.18__8.1.14.el5
kerneleq2.6.18__8.1.3.el5
kerneleq2.6.18__8.1.3.lspp.80.el5
kerneleq2.6.18__8.1.8.el5
kerneleq2.6.18__53.1.4.el5
kerneleq2.6.18__8.1.3.lspp.81.el5
kerneleq2.6.18__8.1.1.el5
kerneleq2.6.18__53.1.14.el5
kerneleq2.6.18__8.1.4.el5
kerneleq2.6.18__53.el5

Name	Operator	Version
kernel	eq	2.6.18__8.1.14.el5
kernel	eq	2.6.18__8.1.3.el5
kernel	eq	2.6.18__8.1.3.lspp.80.el5
kernel	eq	2.6.18__8.1.8.el5
kernel	eq	2.6.18__53.1.4.el5
kernel	eq	2.6.18__8.1.3.lspp.81.el5
kernel	eq	2.6.18__8.1.1.el5
kernel	eq	2.6.18__53.1.14.el5
kernel	eq	2.6.18__8.1.4.el5
kernel	eq	2.6.18__53.el5

Rows per page:

1-10 of 321

References

lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html

lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.html

lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html

lists.vmware.com/pipermail/security-announce/2008/000023.html

marc.info/?l=linux-kernel&m=120967963803205&w=2

marc.info/?l=linux-kernel&m=120967964303224&w=2

secunia.com/advisories/30017

secunia.com/advisories/30018

secunia.com/advisories/30044

secunia.com/advisories/30108

secunia.com/advisories/30110

secunia.com/advisories/30112

secunia.com/advisories/30116

secunia.com/advisories/30260

secunia.com/advisories/30515

secunia.com/advisories/30769

secunia.com/advisories/30818

secunia.com/advisories/30890

secunia.com/advisories/30962

secunia.com/advisories/31246

wiki.rpath.com/Advisories:rPSA-2008-0157

wiki.rpath.com/wiki/Advisories:rPSA-2008-0157

www.debian.org/security/2008/dsa-1565

www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.36.4

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.6

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.1

www.mandriva.com/security/advisories?name=MDVSA-2008:104

www.mandriva.com/security/advisories?name=MDVSA-2008:105

www.mandriva.com/security/advisories?name=MDVSA-2008:167

www.redhat.com/security/updates/classification/#important

www.redhat.com/support/errata/RHSA-2008-0211.html

www.redhat.com/support/errata/RHSA-2008-0233.html

www.redhat.com/support/errata/RHSA-2008-0237.html

www.securityfocus.com/archive/1/491566/100/0/threaded

www.securityfocus.com/archive/1/491732/100/0/threaded

www.securityfocus.com/bid/29003

www.securitytracker.com/id?1019959

www.ubuntu.com/usn/usn-618-1

www.vupen.com/english/advisories/2008/1406/references

www.vupen.com/english/advisories/2008/1452/references

www.vupen.com/english/advisories/2008/2222/references

access.redhat.com/errata/RHSA-2008:0233

exchange.xforce.ibmcloud.com/vulnerabilities/42131

issues.rpath.com/browse/RPL-2501

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11843

usn.ubuntu.com/614-1/

www.redhat.com/archives/fedora-package-announce/2008-May/msg00232.html

0.0005 Low

EPSS

Percentile

18.8%

JSON

Related for VERACODE:23457