Lucene search
UbuntuUSN-577-1HistoryFeb 12, 2008 - 12:00 a.m.
Linux kernel vulnerability
2008-02-1200:00:00
ubuntu.com
40
6.2 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.5%
Releases
- Ubuntu 7.10
- Ubuntu 7.04
- Ubuntu 6.10
Packages
- linux-source-2.6.17 -
- linux-source-2.6.20 -
- linux-source-2.6.22 -
Details
Wojciech Purczynski discovered that the vmsplice system call did
not properly perform verification of user-memory pointers. A local
attacker could exploit this to overwrite arbitrary kernel memory
and gain root privileges. (CVE-2008-0600)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 7.10 | noarch | linux-image-2.6.22-14-itanium | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | acpi-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | block-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | crypto-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | fat-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | fb-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | firewire-core-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | floppy-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | fs-core-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
| Ubuntu | 7.10 | noarch | fs-secondary-modules-2.6.22-14-generic-di | < 2.6.22-14.52 | UNKNOWN |
References
Related
openvas
openvas
RedHat Update for kernel RHSA-2008:0129-01
2009-03-06 00:00:00
Ubuntu: Security Advisory (USN-577-1)
2009-03-23 00:00:00
CentOS Update for kernel CESA-2008:0129 centos5 x86_64
2009-02-27 00:00:00
nessus
nessus
OracleVM 2.1 : kernel (OVMSA-2008-2002)
2014-11-26 00:00:00
RHEL 5 : kernel (RHSA-2008:0129)
2008-02-14 00:00:00
Fedora 7 : kernel-xen-2.6-2.6.21-7.fc7 (2008-1629)
2008-02-14 00:00:00
canvas
canvas
Immunity Canvas: VMSPLICE
2008-02-12 21:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kernel-xen-2.6-2.6.21-7.fc7
2008-02-13 05:16:54
[SECURITY] Fedora 8 Update: kernel-xen-2.6-2.6.21-2957.fc8
2008-02-13 04:48:35
[SECURITY] Fedora 8 Update: kernel-2.6.25.6-27.fc8
2008-06-20 19:05:23
f5
f5
SOL8425 - Linux Kernel Vulnerability - CVE-2008-0600
2008-02-14 00:00:00
Linux Kernel Vulnerability - CVE-2008-0600
2008-02-15 03:00:00
centos
centos
kernel security update
2008-02-13 03:27:15
redhat
redhat
(RHSA-2008:0129) Important: kernel security update
2008-02-12 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:19:52
oraclelinux
oraclelinux
Important: kernel security update
2008-02-13 00:00:00
seebug
seebug
Linux Kernel vmsplice_to_pipe()本地权限提升漏洞
2008-02-22 00:00:00
prion
prion
Null pointer dereference
2008-02-12 21:00:00
debian
debian
[SECURITY] [DSA 1494-2] New linux-2.6 packages fix privilege escalation
2008-02-13 06:28:43
[SECURITY] [DSA 1494-1] New linux-2.6 packages fix privilege escalation
2008-02-11 13:58:54
suse
suse
local privilege escalation in kernel
2008-02-12 13:43:48
local privilege escalation in kernel-rt
2008-03-06 17:51:13
remote denial of service in kernel
2008-06-20 16:05:15
securityvulns
securityvulns
[Full-disclosure] [SECURITY] [DSA 1494-1] New linux-2.6 packages fix privilege escalation
2008-02-11 00:00:00
Linux kernel multiple security vulnerabilities
2008-02-12 00:00:00
ubuntucve
ubuntucve
CVE-2008-0600
2008-02-12 00:00:00
osv
osv
linux-2.6 - privilege escalation
2008-02-11 00:00:00
cve
cve
CVE-2008-0600
2008-02-12 21:00:00
slackware
slackware
[slackware-security] kernel exploit fix
2008-02-12 02:00:01
6.2 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.5%
Related for USN-577-1