CVE-2008-0007

Severity

72%

Complexity

39%

Confidentiality

165%

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2008-02-08 02:00:00

Last updated 6 years ago

2018-10-15 21:56:00

Affected Software

Linux Kernel

References

SUSE-SA:2008:006

SUSE-SA:2008:017

[Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix

[linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007)

Exploit

28806

28826

29058

29570

30018

30110

30112

30116

30769

31246

33280

1019357

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048

DSA-1503

DSA-1504

DSA-1565

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.17

Exploit

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1

MDVSA-2008:044

MDVSA-2008:072

MDVSA-2008:112

MDVSA-2008:174

RHSA-2008:0211

RHSA-2008:0233

RHSA-2008:0237

RHSA-2008:0787

20080208 rPSA-2008-0048-1 kernel

27686

27705

USN-618-1

ADV-2008-0445

ADV-2008-2222

oval:org.mitre.oval:def:9412

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.