Lucene search

K
ubuntuUbuntuUSN-451-1
HistoryApr 11, 2007 - 12:00 a.m.

Linux kernel vulnerabilities

2007-04-1100:00:00
ubuntu.com
33

6.1 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.079 Low

EPSS

Percentile

94.3%

Releases

  • Ubuntu 6.10
  • Ubuntu 6.06

Details

The kernel key management code did not correctly handle key reuse. A
local attacker could create many key requests, leading to a denial of
service. (CVE-2007-0006)

The kernel NFS code did not correctly validate NFSACL2 ACCESS requests.
If a system was serving NFS mounts, a remote attacker could send a
specially crafted packet, leading to a denial of service.
(CVE-2007-0772)

When dumping core, the kernel did not correctly handle PT_INTERP
processes. A local attacker could create situations where they could
read the contents of otherwise unreadable executable programs.
(CVE-2007-0958)

6.1 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.079 Low

EPSS

Percentile

94.3%