Lucene search
HistoryApr 02, 2009 - 5:30 p.m.
CVE-2009-1238
cve-2009-1238
race condition
hfs
kernel memory corruption
xnu
denial of service
apple mac os x
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.7%
Race condition in the HFS vfs sysctl interface in XNU 1228.8.20 and earlier on Apple Mac OS X 10.5.6 and earlier allows local users to cause a denial of service (kernel memory corruption) by simultaneously executing the same HFS_SET_PKG_EXTENSIONS code path in multiple threads, which is problematic because of lack of mutex locking for an unspecified global variable.
Affected configurations
Node
applemac_os_xRange≤10.5.6
ORapplemac_os_xMatch10.0
ORapplemac_os_xMatch10.0.0
ORapplemac_os_xMatch10.0.1
ORapplemac_os_xMatch10.0.2
ORapplemac_os_xMatch10.0.3
ORapplemac_os_xMatch10.0.4
ORapplemac_os_xMatch10.1
ORapplemac_os_xMatch10.1.0
ORapplemac_os_xMatch10.1.1
ORapplemac_os_xMatch10.1.2
ORapplemac_os_xMatch10.1.3
ORapplemac_os_xMatch10.1.4
ORapplemac_os_xMatch10.1.5
ORapplemac_os_xMatch10.2
ORapplemac_os_xMatch10.2.0
ORapplemac_os_xMatch10.2.1
ORapplemac_os_xMatch10.2.2
ORapplemac_os_xMatch10.2.3
ORapplemac_os_xMatch10.2.4
ORapplemac_os_xMatch10.2.5
ORapplemac_os_xMatch10.2.6
ORapplemac_os_xMatch10.2.7
ORapplemac_os_xMatch10.2.8
ORapplemac_os_xMatch10.3
ORapplemac_os_xMatch10.3.0
ORapplemac_os_xMatch10.3.1
ORapplemac_os_xMatch10.3.2
ORapplemac_os_xMatch10.3.3
ORapplemac_os_xMatch10.3.4
ORapplemac_os_xMatch10.3.5
ORapplemac_os_xMatch10.3.6
ORapplemac_os_xMatch10.3.7
ORapplemac_os_xMatch10.3.8
ORapplemac_os_xMatch10.3.9
ORapplemac_os_xMatch10.4
ORapplemac_os_xMatch10.4.0
ORapplemac_os_xMatch10.4.1
ORapplemac_os_xMatch10.4.2
ORapplemac_os_xMatch10.4.3
ORapplemac_os_xMatch10.4.4
ORapplemac_os_xMatch10.4.5
ORapplemac_os_xMatch10.4.6
ORapplemac_os_xMatch10.4.7
ORapplemac_os_xMatch10.4.8
ORapplemac_os_xMatch10.4.8mac_mini
ORapplemac_os_xMatch10.4.8macbook
ORapplemac_os_xMatch10.4.8macbook_pro
ORapplemac_os_xMatch10.4.9
ORapplemac_os_xMatch10.4.10
ORapplemac_os_xMatch10.4.11
ORapplemac_os_xMatch10.5
ORapplemac_os_xMatch10.5.0
ORapplemac_os_xMatch10.5.1
ORapplemac_os_xMatch10.5.2
ORapplemac_os_xMatch10.5.22008-002
ORapplemac_os_xMatch10.5.3
ORapplemac_os_xMatch10.5.4
ORapplemac_os_xMatch10.5.5
ORapplemac_os_x_serverRange≤10.5.6
ORapplemac_os_x_serverMatch10.0
ORapplemac_os_x_serverMatch10.0.0
ORapplemac_os_x_serverMatch10.0.1
ORapplemac_os_x_serverMatch10.0.2
ORapplemac_os_x_serverMatch10.0.3
ORapplemac_os_x_serverMatch10.0.4
ORapplemac_os_x_serverMatch10.1
ORapplemac_os_x_serverMatch10.1.0
ORapplemac_os_x_serverMatch10.1.1
ORapplemac_os_x_serverMatch10.1.2
ORapplemac_os_x_serverMatch10.1.3
ORapplemac_os_x_serverMatch10.1.4
ORapplemac_os_x_serverMatch10.1.5
ORapplemac_os_x_serverMatch10.2
ORapplemac_os_x_serverMatch10.2.0
ORapplemac_os_x_serverMatch10.2.1
ORapplemac_os_x_serverMatch10.2.2
ORapplemac_os_x_serverMatch10.2.3
ORapplemac_os_x_serverMatch10.2.4
ORapplemac_os_x_serverMatch10.2.5
ORapplemac_os_x_serverMatch10.2.6
ORapplemac_os_x_serverMatch10.2.7
ORapplemac_os_x_serverMatch10.2.8
ORapplemac_os_x_serverMatch10.3
ORapplemac_os_x_serverMatch10.3.0
ORapplemac_os_x_serverMatch10.3.1
ORapplemac_os_x_serverMatch10.3.2
ORapplemac_os_x_serverMatch10.3.3
ORapplemac_os_x_serverMatch10.3.4
ORapplemac_os_x_serverMatch10.3.5
ORapplemac_os_x_serverMatch10.3.6
ORapplemac_os_x_serverMatch10.3.7
ORapplemac_os_x_serverMatch10.3.8
ORapplemac_os_x_serverMatch10.3.9
ORapplemac_os_x_serverMatch10.4
ORapplemac_os_x_serverMatch10.4.0
ORapplemac_os_x_serverMatch10.4.1
ORapplemac_os_x_serverMatch10.4.2
ORapplemac_os_x_serverMatch10.4.3
ORapplemac_os_x_serverMatch10.4.4
ORapplemac_os_x_serverMatch10.4.5
ORapplemac_os_x_serverMatch10.4.6
ORapplemac_os_x_serverMatch10.4.7
ORapplemac_os_x_serverMatch10.4.8
ORapplemac_os_x_serverMatch10.4.9
ORapplemac_os_x_serverMatch10.4.10
ORapplemac_os_x_serverMatch10.4.11
ORapplemac_os_x_serverMatch10.5
ORapplemac_os_x_serverMatch10.5.0
ORapplemac_os_x_serverMatch10.5.1
ORapplemac_os_x_serverMatch10.5.2
ORapplemac_os_x_serverMatch10.5.3
ORapplemac_os_x_serverMatch10.5.4
ORapplemac_os_x_serverMatch10.5.5
Related
cvelist
cvelist
CVE-2009-1238
2009-04-02 17:00:00
nvd
nvd
CVE-2009-1238
2009-04-02 17:30:00
prion
prion
Race condition
2009-04-02 17:30:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.7%
Related for CVE-2009-1238