CVE-2008-5079

Severity

49%

Complexity

39%

Confidentiality

115%

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service (kernel infinite loop) by making two calls to svc_listen for the same socket, and then reading a /proc/net/atm/*vc file, related to corruption of the vcc table.

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service (kernel infinite loop) by making two calls to svc_listen for the same socket, and then reading a /proc/net/atm/*vc file, related to corruption of the vcc table.

CVSS 2.0 Base Score 4.9. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:N/I:N/A:C).

Overview

First reported 16 years ago

2008-12-09 00:30:00

Last updated 6 years ago

2018-10-11 20:54:00

Affected Software

Linux Kernel 2.6.18

2.6.18

Linux Kernel 2.6.18 Release Candidate 1

2.6.18

Linux Kernel 2.6.18 Release Candidate 2

2.6.18

Linux Kernel 2.6.18 Release Candidate 3

2.6.18

Linux Kernel 2.6.18 Release Candidate 4

2.6.18

Linux Kernel 2.6.18 Release Candidate 5

2.6.18

Linux Kernel 2.6.18 Release Candidate 6

2.6.18

Linux Kernel 2.6.18 Release Candidate 7

2.6.18

Linux Kernel 2.6.19.4

2.6.19.4

Linux Kernel 2.6.19.5

2.6.19.5

Linux Kernel 2.6.19.6

2.6.19.6

Linux Kernel 2.6.19.7

2.6.19.7

Linux Kernel 2.6.20.16

2.6.20.16

Linux Kernel 2.6.20.17

2.6.20.17

Linux Kernel 2.6.20.18

2.6.20.18

Linux Kernel 2.6.20.19

2.6.20.19

Linux Kernel 2.6.20.20

2.6.20.20

Linux Kernel 2.6.20.21

2.6.20.21

Linux Kernel 2.6.21.5

2.6.21.5

Linux Kernel 2.6.21.6

2.6.21.6

Linux Kernel 2.6.21.7

2.6.21.7

Linux Kernel 2.6.22

2.6.22

Linux Kernel 2.6.22.1

2.6.22.1

Linux Kernel 2.6.22.2

2.6.22.2

Linux Kernel 2.6.22.8

2.6.22.8

Linux Kernel 2.6.22.9

2.6.22.9

Linux Kernel 2.6.22.10

2.6.22.10

Linux Kernel 2.6.22.11

2.6.22.11

Linux Kernel 2.6.22.12

2.6.22.12

Linux Kernel 2.6.22.13

2.6.22.13

Linux Kernel 2.6.22.14

2.6.22.14

Linux Kernel 2.6.22.15

2.6.22.15

Linux Kernel 2.6.22.17

2.6.22.17

Linux Kernel 2.6.22.18

2.6.22.18

Linux Kernel 2.6.22.19

2.6.22.19

Linux Kernel 2.6.22.20

2.6.22.20

Linux Kernel 2.6.22.21

2.6.22.21

Linux Kernel 2.6.22.22

2.6.22.22

Linux Kernel 2.6.23

2.6.23

Linux Kernel 2.6.23.8

2.6.23.8

Linux Kernel 2.6.23.9

2.6.23.9

Linux Kernel 2.6.23.10

2.6.23.10

Linux Kernel 2.6.23.11

2.6.23.11

Linux Kernel 2.6.23.12

2.6.23.12

Linux Kernel 2.6.23.13

2.6.23.13

Linux Kernel 2.6.23.16

2.6.23.15

Linux Kernel 2.6.23.16

2.6.23.16

Linux Kernel 2.6.23.17

2.6.23.17

Linux Kernel 2.6.24

2.6.24

Linux Kernel 2.6.24.1

2.6.24.1

Linux Kernel 2.6.24.2

2.6.24.2

Linux Kernel 2.6.24.3

2.6.24.3

Linux Kernel 2.6.24.4

2.6.24.4

Linux Kernel 2.6.24.5

2.6.24.5

Linux Kernel 2.6.24.6

2.6.24.6

Linux Kernel 2.6.24.7

2.6.24.7

Linux Kernel 2.6.25

2.6.25

Linux Kernel 2.6.25.1

2.6.25.1

Linux Kernel 2.6.25.2

2.6.25.2

Linux Kernel 2.6.25.3

2.6.25.3

Linux Kernel 2.6.25.4

2.6.25.4

Linux Kernel 2.6.25.5

2.6.25.5

Linux Kernel 2.6.25.6

2.6.25.6

Linux Kernel 2.6.25.7

2.6.25.7

Linux Kernel 2.6.25.8

2.6.25.8

Linux Kernel 2.6.25.9

2.6.25.9

Linux Kernel 2.6.25.10

2.6.25.10

Linux Kernel 2.6.25.11

2.6.25.11

Linux Kernel 2.6.25.12

2.6.25.12

Linux Kernel 2.6.25.13

2.6.25.13

Linux Kernel 2.6.25.14

2.6.25.14

Linux Kernel 2.6.25.15

2.6.25.15

Linux Kernel 2.6.25.16

2.6.25.16

Linux Kernel 2.6.25.17

2.6.25.17

Linux Kernel 2.6.26

2.6.26

Linux Kernel 2.6.26.1

2.6.26.1

Linux Kernel 2.6.26.2

2.6.26.2

Linux Kernel 2.6.26.3

2.6.26.3

Linux Kernel 2.6.26.4

2.6.26.4

Linux Kernel 2.6.26.5

2.6.26.5

Linux Kernel 2.6.27

2.6.27

Linux Kernel

References

SUSE-SA:2009:004

SUSE-SA:2009:008

SUSE-SA:2009:010

[linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table

32913

Vendor Advisory

33083

33348

33623

33641

33704

33706

33756

33854

34981

4694

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0332

DSA-1787

MDVSA-2009:032

RHSA-2009:0053

RHSA-2009:0225

20081205 CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table

20081209 rPSA-2008-0332-1 kernel

32676

1021360

USN-715-1

https://issues.rpath.com/browse/RPL-2915

oval:org.mitre.oval:def:11288

USN-714-1

FEDORA-2008-11618

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.