Lucene search

K
nvd[email protected]NVD:CVE-2009-0745
HistoryFeb 27, 2009 - 5:30 p.m.

CVE-2009-0745

2009-02-2717:30:09
CWE-20
web.nvd.nist.gov
8

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

7

Confidence

High

EPSS

0

Percentile

10.1%

The ext4_group_add function in fs/ext4/resize.c in the Linux kernel 2.6.27 before 2.6.27.19 and 2.6.28 before 2.6.28.7 does not properly initialize the group descriptor during a resize (aka resize2fs) operation, which might allow local users to cause a denial of service (OOPS) by arranging for crafted values to be present in available memory.

Affected configurations

Nvd
Node
linuxlinux_kernelMatch2.6.27
OR
linuxlinux_kernelMatch2.6.27.1
OR
linuxlinux_kernelMatch2.6.27.2
OR
linuxlinux_kernelMatch2.6.27.3
OR
linuxlinux_kernelMatch2.6.27.4
OR
linuxlinux_kernelMatch2.6.27.5
OR
linuxlinux_kernelMatch2.6.27.6
OR
linuxlinux_kernelMatch2.6.27.7
OR
linuxlinux_kernelMatch2.6.27.8
OR
linuxlinux_kernelMatch2.6.27.9
OR
linuxlinux_kernelMatch2.6.27.10
OR
linuxlinux_kernelMatch2.6.27.11
OR
linuxlinux_kernelMatch2.6.27.12
OR
linuxlinux_kernelMatch2.6.27.13
OR
linuxlinux_kernelMatch2.6.27.14
OR
linuxlinux_kernelMatch2.6.27.15
OR
linuxlinux_kernelMatch2.6.27.16
OR
linuxlinux_kernelMatch2.6.27.17
OR
linuxlinux_kernelMatch2.6.27.18
OR
linuxlinux_kernelMatch2.6.28
OR
linuxlinux_kernelMatch2.6.28.1
OR
linuxlinux_kernelMatch2.6.28.2
OR
linuxlinux_kernelMatch2.6.28.3
OR
linuxlinux_kernelMatch2.6.28.4
OR
linuxlinux_kernelMatch2.6.28.5
OR
linuxlinux_kernelMatch2.6.28.6
VendorProductVersionCPE
linuxlinux_kernel2.6.27cpe:2.3:o:linux:linux_kernel:2.6.27:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.1cpe:2.3:o:linux:linux_kernel:2.6.27.1:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.2cpe:2.3:o:linux:linux_kernel:2.6.27.2:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.3cpe:2.3:o:linux:linux_kernel:2.6.27.3:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.4cpe:2.3:o:linux:linux_kernel:2.6.27.4:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.5cpe:2.3:o:linux:linux_kernel:2.6.27.5:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.6cpe:2.3:o:linux:linux_kernel:2.6.27.6:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.7cpe:2.3:o:linux:linux_kernel:2.6.27.7:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.8cpe:2.3:o:linux:linux_kernel:2.6.27.8:*:*:*:*:*:*:*
linuxlinux_kernel2.6.27.9cpe:2.3:o:linux:linux_kernel:2.6.27.9:*:*:*:*:*:*:*
Rows per page:
1-10 of 261

References

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

7

Confidence

High

EPSS

0

Percentile

10.1%