Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1505-1
HistoryFeb 22, 2008 - 12:00 a.m.

alsa-driver alsa-modules-i386 - kernel memory leak

2008-02-2200:00:00
Google
osv.dev
9

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.5%

JSON

Takashi Iwai supplied a fix for a memory leak in the snd_page_alloc module.
Local users could exploit this issue to obtain sensitive information from
the kernel (CVE-2007-4571).

For the oldstable distribution (sarge), this problem has been fixed in
version 1.0.8-7sarge1. The prebuilt modules provided by alsa-modules-i386
have been rebuilt to take advantage of this update, and are available in
version 1.0.8+2sarge2.

For the stable distribution (etch), this problem has been fixed in
version 1.0.13-5etch1. This issue was already fixed for the version
of ALSA provided by linux-2.6 in DSA 1479.

For the unstable distributions (sid), this problem was fixed in version
1.0.15-1.

We recommend that you upgrade your alsa-driver and alsa-modules-i386
packages.

CPENameOperatorVersion
alsa-drivereq1.0.13-5

Related

seebug 2
ubuntucve 1
prion 1
openvas 15
securityvulns 1
nessus 17
fedora 2
exploitpack 1
debian 2
veracode 1
cve 1
exploitdb 1
oraclelinux 2
redhat 2
osv 1
ubuntu 1
centos 1
suse 1
seebug
seebug
Linux Kernel 2.6.x ALSA snd-page-alloc Local Proc File Information Disclosure Vulnerability
2014-07-01 00:00:00
Linux Kernel ALSA驱动snd-page-alloc本地Proc文件信息泄露漏洞
2007-09-27 00:00:00
ubuntucve
ubuntucve
CVE-2007-4571
2007-09-26 00:00:00
prion
prion
Code injection
2007-09-26 10:17:00
openvas
openvas
Debian Security Advisory DSA 1505-1 (alsa-driver)
2008-02-28 00:00:00
Fedora Update for kernel FEDORA-2007-714
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-2349
2009-02-27 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 09.25.07: Linux Kernel ALSA snd_mem_proc_read Information Disclosure Vulnerability
2007-09-26 00:00:00
nessus
nessus
Fedora Core 6 : kernel-2.6.22.9-61.fc6 (2007-714)
2007-10-09 00:00:00
Debian DSA-1505-1 : alsa-driver - kernel memory leak
2008-02-25 00:00:00
Fedora 7 : kernel-2.6.22.9-91.fc7 (2007-2349)
2007-11-06 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kernel-2.6.22.9-91.fc7
2007-09-28 21:24:04
[SECURITY] Fedora Core 6 Update: kernel-2.6.22.9-61.fc6
2007-10-08 13:50:41
exploitpack
exploitpack
Linux Kernel 2.6.x - ALSA snd-page-alloc Local Proc File Information Disclosure
2007-09-21 00:00:00
debian
debian
[SECURITY] [DSA 1505-1] New alsa-driver packages fix kernel memory leak
2008-02-22 22:03:09
[SECURITY] [DSA 1479-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-01-29 18:04:31
veracode
veracode
Information Disclosure
2020-04-10 00:21:59
cve
cve
CVE-2007-4571
2007-09-26 10:17:00
exploitdb
exploitdb
Linux Kernel 2.6.x - ALSA snd-page-alloc Local Proc File Information Disclosure
2007-09-21 00:00:00
oraclelinux
oraclelinux
Important: kernel security update
2007-11-30 00:00:00
Important: kernel security update
2007-11-02 00:00:00
redhat
redhat
(RHSA-2007:0993) Important: kernel security update
2007-11-29 00:00:00
(RHSA-2007:0939) Important: kernel security update
2007-11-01 00:00:00
osv
osv
linux-2.6
2008-01-29 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-06-19 00:00:00
centos
centos
kernel security update
2007-11-03 02:32:41
suse
suse
local privilege escalation in kernel
2007-10-12 16:04:36

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.5%

JSON
Related for OSV:DSA-1505-1
seebug2ubuntucve1prion1openvas15securityvulns1nessus17fedora2exploitpack1debian2veracode1cve1exploitdb1oraclelinux2redhat2osv1ubuntu1centos1suse1