cvelistv5 - cve-2008-0009

CVE-2008-0009 (GCVE-0-2008-0009)

Vulnerability from cvelistv5

Published

2008-02-12 20:00

Modified

2024-08-07 07:32

Severity ?

CWE

Summary

The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations.

References

URL

Tags

	https://bugzilla.redhat.com/show_bug.cgi?id=431206	x_refsource_CONFIRM
	http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1	x_refsource_CONFIRM
	http://www.vupen.com/english/advisories/2008/0487/references	vdb-entry, x_refsource_VUPEN
	http://www.securityfocus.com/archive/1/487982/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
	http://isec.pl/vulnerabilities/isec-0026-vmsplice_to_kernel.txt	x_refsource_MISC
	https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00254.html	vendor-advisory, x_refsource_FEDORA
	http://secunia.com/advisories/28896	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/28835	third-party-advisory, x_refsource_SECUNIA
	http://www.securityfocus.com/bid/27799	vdb-entry, x_refsource_BID
	https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00255.html	vendor-advisory, x_refsource_FEDORA
	http://www.securityfocus.com/bid/27704	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T07:32:23.333Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=431206"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1"
          },
          {
            "name": "ADV-2008-0487",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/0487/references"
          },
          {
            "name": "20080212 CSA-L03: Linux kernel vmsplice unchecked user-pointer dereference",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/487982/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://isec.pl/vulnerabilities/isec-0026-vmsplice_to_kernel.txt"
          },
          {
            "name": "FEDORA-2008-1422",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00254.html"
          },
          {
            "name": "28896",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28896"
          },
          {
            "name": "28835",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28835"
          },
          {
            "name": "27799",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/27799"
          },
          {
            "name": "FEDORA-2008-1423",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00255.html"
          },
          {
            "name": "27704",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/27704"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-02-08T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-15T20:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=431206"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1"
        },
        {
          "name": "ADV-2008-0487",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/0487/references"
        },
        {
          "name": "20080212 CSA-L03: Linux kernel vmsplice unchecked user-pointer dereference",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/487982/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://isec.pl/vulnerabilities/isec-0026-vmsplice_to_kernel.txt"
        },
        {
          "name": "FEDORA-2008-1422",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00254.html"
        },
        {
          "name": "28896",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28896"
        },
        {
          "name": "28835",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28835"
        },
        {
          "name": "27799",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/27799"
        },
        {
          "name": "FEDORA-2008-1423",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00255.html"
        },
        {
          "name": "27704",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/27704"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2008-0009",
    "datePublished": "2008-02-12T20:00:00.000Z",
    "dateReserved": "2007-12-03T00:00:00.000Z",
    "dateUpdated": "2024-08-07T07:32:23.333Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2008-AVI-067

Vulnerability from certfr_avis

Une vulnérabilité dans le noyau Linux permet à un utilisateur local d'élever ses privilèges.

Description

Une erreur dans la gestion des tubes ou « pipes » est présente dans le noyau Linux des systèmes d'exploitations GNU/Linux. Celle-ci permet à un utilisateur malintentionné, local au système, d'aquérir les privilèges du super-utilisateur root.

Solution

La version 2.6.24.2 du noyau Linux corrige le problème :

http://www.kernel.org

Pour les différentes distributions GNU/Linux, se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Linux versions 2.6.24.1 et antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Liste des changements apportés à la version 2.6.24.2 du noyau Linux	None	vendor-advisory
Bulletin de sécurité RedHat RHSA-2008:0129 du 12 février 2008 :	-	other
Site du noyau Linux :	-	other
Bulletin de sécurité Mandriva MDVSA-2008:043 du 11 février 2008 :	-	other
Bulletin de sécurité SuSE SUSE-SA:2008:007 du 12 février 2008 :	-	other
Liste des changements apportés à la version 2.6.24.2 du noyau Linux :	-	other
Bulletin de sécurité Debian DSA-1494 du 11 février 2008 :	-	other
Bulletin de sécurité Ubuntu USN-577 du 12 février 2008 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLinux versions 2.6.24.1 et ant\u00e9rieures.\u003c/p\u003e",
  "content": "## Description\n\nUne erreur dans la gestion des tubes ou \u00ab pipes \u00bb est pr\u00e9sente dans le\nnoyau Linux des syst\u00e8mes d\u0027exploitations GNU/Linux. Celle-ci permet \u00e0 un\nutilisateur malintentionn\u00e9, local au syst\u00e8me, d\u0027aqu\u00e9rir les privil\u00e8ges\ndu super-utilisateur root.\n\n## Solution\n\nLa version 2.6.24.2 du noyau Linux corrige le probl\u00e8me :\n\n    http://www.kernel.org\n\nPour les diff\u00e9rentes distributions GNU/Linux, se r\u00e9f\u00e9rer au bulletin de\ns\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section\nDocumentation).\n",
  "cves": [
    {
      "name": "CVE-2008-0600",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0600"
    },
    {
      "name": "CVE-2008-0010",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0010"
    },
    {
      "name": "CVE-2008-0009",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0009"
    }
  ],
  "initial_release_date": "2008-02-11T00:00:00",
  "last_revision_date": "2008-02-13T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2008:0129 du 12 f\u00e9vrier    2008 :",
      "url": "https://rhn.redhat.com/errata/RHSA-2008-0129.html"
    },
    {
      "title": "Site du noyau Linux :",
      "url": "http://www.kernel.org"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDVSA-2008:043 du 11 f\u00e9vrier    2008 :",
      "url": "http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:043"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2008:007 du 12 f\u00e9vrier    2008 :",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html"
    },
    {
      "title": "Liste des changements apport\u00e9s \u00e0 la version 2.6.24.2 du    noyau Linux :",
      "url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-1494 du 11 f\u00e9vrier 2008 :",
      "url": "http://www.debian.org/security/2008/DSA-1494"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-577 du 12 f\u00e9vrier 2008 :",
      "url": "https://lists.ubuntu.com/archives/ubuntu-security-announce/2008-February/000664.html"
    }
  ],
  "reference": "CERTA-2008-AVI-067",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2008-02-11T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences CVE et des bulletins de s\u00e9curit\u00e9 Debian, Mandriva et SuSE ;",
      "revision_date": "2008-02-12T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences aux bulletins RedHat et Ubuntu.",
      "revision_date": "2008-02-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans le noyau Linux permet \u00e0 un utilisateur local\nd\u0027\u00e9lever ses privil\u00e8ges.\n",
  "title": "Vuln\u00e9rabilit\u00e9 du noyau Linux",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Liste des changements apport\u00e9s \u00e0 la version 2.6.24.2 du noyau Linux",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2008-0009 (GCVE-0-2008-0009)

Vulnerability from cvelistv5

CERTA-2008-AVI-067

Vulnerability from certfr_avis

Description

Solution

Tags

Sightings

Nomenclature