Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:2254
HistoryOct 03, 2007 - 12:00 a.m.

Linux Kernel PTrace空指针引用本地拒绝服务漏洞

2007-10-0300:00:00
Root
www.seebug.org
20

0.0004 Low

EPSS

Percentile

8.6%

JSON

BUGTRAQ ID: 25801
CVE(CAN) ID: CVE-2007-3731

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel的ptrace实现上存在漏洞,本地攻击者可能利用此漏洞导致应用程序崩溃。

Linux Kernel在ptrace单步操作期间没有正确地处理%cs(xcs字段)中无效的LDT段选择器,如果本地攻击者通过某些代码发布了ptrace PTRACE_SETREGS和PTRACE_SINGLESTEP请求的话,就会在TRACE_IRQS_ON或arch_ptrace函数中触发空指针引用,导致应用程序崩溃。

Linux kernel 2.6.21
Linux kernel 2.6.20
目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

<a href=“http://www.kernel.org/” target=“_blank”>http://www.kernel.org/</a>


                                                http://bugzilla.kernel.org/show_bug.cgi?format=multiple&amp;id=8765

Related

veracode 1
ubuntucve 1
cve 1
prion 1
ubuntu 1
openvas 8
nessus 6
osv 2
debian 2
securityvulns 1
redhat 1
centos 1
oraclelinux 2
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:21:19
ubuntucve
ubuntucve
CVE-2007-3731
2007-09-17 00:00:00
cve
cve
CVE-2007-3731
2007-09-17 17:17:00
prion
prion
Design/Logic Flaw
2007-09-17 17:17:00
ubuntu
ubuntu
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20 vulnerabilities
2007-09-25 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-518-1)
2009-03-23 00:00:00
Ubuntu Update for linux-source-2.6.15/17/20 vulnerabilities USN-518-1
2009-03-23 00:00:00
Debian Security Advisory DSA 1378-1 (linux-2.6)
2008-01-17 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 6.10 / 7.04 : linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20 vulnerabilities (USN-518-1)
2007-11-10 00:00:00
Debian DSA-1378-2 : linux-2.6 - several vulnerabilities
2007-10-03 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2007-09-28 00:00:00
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2007-09-28 00:00:00
debian
debian
[SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities
2007-09-27 00:00:00
[SECURITY] [DSA 1378-2] New Linux 2.6.18 packages fix several vulnerabilities
2007-09-28 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities
2007-09-28 00:00:00
redhat
redhat
(RHSA-2007:0940) Important: kernel security update
2007-10-22 00:00:00
centos
centos
kernel security update
2007-10-23 22:22:36
oraclelinux
oraclelinux
Important: kernel security update
2007-09-30 00:00:00
Important:kernel security update
2007-10-23 00:00:00

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for SSV:2254
veracode1ubuntucve1cve1prion1ubuntu1openvas8nessus6osv2debian2securityvulns1redhat1centos1oraclelinux2