Lucene search

K
ubuntucveUbuntu.comUB:CVE-2009-0787
HistoryMar 25, 2009 - 12:00 a.m.

CVE-2009-0787

2009-03-2500:00:00
ubuntu.com
ubuntu.com
11

4.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

10.0%

The ecryptfs_write_metadata_to_contents function in the eCryptfs
functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect
size when writing kernel memory to an eCryptfs file header, which triggers
an out-of-bounds read and allows local users to obtain portions of kernel
memory.

4.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

10.0%