Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:3252
HistoryMay 05, 2008 - 12:00 a.m.

Linux Kernel dnotify.c文件本地竞争条件漏洞

2008-05-0500:00:00
Root
www.seebug.org
19

0.0005 Low

EPSS

Percentile

16.4%

JSON

BUGTRAQ ID: 29003
CVE(CAN) ID: CVE-2008-1375

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel的dnotify子系统在fcntl()和close()调用之间存在竞争条件,在最后一个描述符已经离开current->files之后可以将dnotify_struct注入到inode的列表中,这可能导致系统崩溃或获得root用户权限。

Linux kernel < 2.6.25.1
厂商补丁:

Debian

Debian已经为此发布了一个安全公告(DSA-1565-1)以及相应补丁:
DSA-1565-1:New Linux 2.6.18 packages fix several vulnerabilities
链接:<a href=“http://www.debian.org/security/2008/dsa-1565” target=“_blank”>http://www.debian.org/security/2008/dsa-1565</a>

Related

cve 1
veracode 1
prion 1
ubuntucve 1
openvas 32
nessus 26
securityvulns 4
osv 1
suse 3
ubuntu 2
debian 1
fedora 1
oraclelinux 4
redhat 3
centos 3
vmware 2
cve
cve
CVE-2008-1375
2008-05-02 16:05:00
veracode
veracode
Privilege Escalation
2020-04-10 00:27:36
prion
prion
Race condition
2008-05-02 16:05:00
ubuntucve
ubuntucve
CVE-2008-1375
2008-05-02 00:00:00
openvas
openvas
Mandriva Update for kernel MDVSA-2008:104 (kernel)
2009-04-09 00:00:00
Mandriva Update for kernel MDVSA-2008:104 (kernel)
2009-04-09 00:00:00
Debian Security Advisory DSA 1565-1 (linux-2.6)
2008-05-12 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : kernel (MDVSA-2008:104)
2009-04-23 00:00:00
Fedora 8 : kernel-2.6.24.7-92.fc8 (2008-3873)
2008-05-16 00:00:00
Debian DSA-1565-1 : linux-2.6 - several vulnerabilities
2008-05-02 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-06-04 00:00:00
[SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-05-02 00:00:00
[USN-614-1] Linux kernel vulnerabilities
2008-06-04 00:00:00
osv
osv
linux-2.6 - several vulnerabilities
2008-05-01 00:00:00
suse
suse
remote denial of service in kernel
2008-07-02 13:19:53
remote denial of service in kernel
2008-07-07 14:54:24
remote denial of service in kernel
2008-06-20 16:05:15
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-06-03 00:00:00
Linux kernel vulnerabilities
2008-06-19 00:00:00
debian
debian
[SECURITY] [DSA 1565-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-05-01 18:25:04
fedora
fedora
[SECURITY] Fedora 8 Update: kernel-2.6.24.7-92.fc8
2008-05-14 21:32:12
oraclelinux
oraclelinux
kernel security and bug fix update
2008-05-08 00:00:00
kernel security and bug fix update
2008-05-07 00:00:00
kernel security and bug fix update
2008-05-07 00:00:00
redhat
redhat
(RHSA-2008:0237) Important: kernel security and bug fix update
2008-05-07 00:00:00
(RHSA-2008:0233) Important: kernel security and bug fix update
2008-05-07 00:00:00
(RHSA-2008:0211) Important: kernel security and bug fix update
2008-05-07 00:00:00
centos
centos
kernel security update
2008-05-09 09:41:42
kernel security update
2008-05-10 02:08:23
kernel security update
2008-05-07 14:58:01
vmware
vmware
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00

0.0005 Low

EPSS

Percentile

16.4%

JSON
Related for SSV:3252
cve1veracode1prion1ubuntucve1openvas32nessus26securityvulns4osv1suse3ubuntu2debian1fedora1oraclelinux4redhat3centos3vmware2