8.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0005 Low
EPSS
Percentile
14.6%
Sebastian Krahmer discovered that udev did not correctly validate netlink
message senders. A local attacker could send specially crafted messages
to udev in order to gain root privileges. (CVE-2009-1185)
Sebastian Krahmer discovered a buffer overflow in the path encoding routines
in udev. A local attacker could exploit this to crash udev, leading to a
denial of service. (CVE-2009-1186)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 8.10 | noarch | udev | < 124-9ubuntu0.2 | UNKNOWN |
Ubuntu | 8.10 | noarch | libvolume-id-dev | < 124-9ubuntu0.2 | UNKNOWN |
Ubuntu | 8.10 | noarch | libvolume-id0 | < 124-9ubuntu0.2 | UNKNOWN |
Ubuntu | 8.10 | noarch | udev-udeb | < 124-9ubuntu0.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | udev | < 117-8ubuntu0.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | libvolume-id-dev | < 117-8ubuntu0.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | libvolume-id0 | < 117-8ubuntu0.2 | UNKNOWN |
Ubuntu | 8.04 | noarch | udev-udeb | < 117-8ubuntu0.2 | UNKNOWN |
Ubuntu | 7.10 | noarch | udev | < 113-0ubuntu17.2 | UNKNOWN |
Ubuntu | 7.10 | noarch | libvolume-id-dev | < 113-0ubuntu17.2 | UNKNOWN |