Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-1897
HistoryJul 20, 2009 - 12:00 a.m.

CVE-2009-1897

2009-07-2000:00:00
ubuntu.com
ubuntu.com
21

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The tun_chr_poll function in drivers/net/tun.c in the tun subsystem in the
Linux kernel 2.6.30 and 2.6.30.1, when the -fno-delete-null-pointer-checks
gcc option is omitted, allows local users to gain privileges via vectors
involving a NULL pointer dereference and an mmap of /dev/net/tun, a
different vulnerability than CVE-2009-1894.

Related

cve 2
prion 2
openvas 29
nessus 6
debian 1
gentoo 1
ubuntucve 1
ubuntu 1
debiancve 1
securityvulns 5
osv 1
seebug 2
packetstorm 1
exploitpack 1
exploitdb 1
fedora 10
oraclelinux 1
cve
cve
CVE-2009-1897
2009-07-20 17:30:00
CVE-2009-1894
2009-07-17 16:30:00
prion
prion
Null pointer dereference
2009-07-20 17:30:00
Race condition
2009-07-17 16:30:00
openvas
openvas
Debian Security Advisory DSA 1838-1 (pulseaudio)
2009-07-29 00:00:00
Gentoo Security Advisory GLSA 200907-13 (pulseaudio)
2009-07-29 00:00:00
Mandrake Security Advisory MDVSA-2009:152 (pulseaudio)
2009-07-29 00:00:00
nessus
nessus
GLSA-200907-13 : PulseAudio: Local privilege escalation
2009-07-17 00:00:00
Debian DSA-1838-1 : pulseaudio - privilege escalation
2010-02-24 00:00:00
Mandriva Linux Security Advisory : pulseaudio (MDVSA-2009:152)
2009-07-20 00:00:00
debian
debian
[SECURITY] [DSA 1838-1] New pulseaudio packages fix privilege escalation
2009-07-18 12:18:19
gentoo
gentoo
PulseAudio: Local privilege escalation
2009-07-16 00:00:00
ubuntucve
ubuntucve
CVE-2009-1894
2009-07-17 00:00:00
ubuntu
ubuntu
PulseAudio vulnerability
2009-07-16 00:00:00
debiancve
debiancve
CVE-2009-1894
2009-07-17 16:30:00
securityvulns
securityvulns
PulseAudio race conditions
2009-07-18 00:00:00
PulseAudio local race condition privilege escalation vulnerability
2009-07-18 00:00:00
The GNU C library dynamic linker expands $ORIGIN in setuid library search path
2010-10-24 00:00:00
osv
osv
pulseaudio - privilege escalation
2009-07-18 00:00:00
seebug
seebug
Linux Kernel tun_chr_pool()ε‡½ζ•°η©ΊζŒ‡ι’ˆεΌ•η”¨ζΌζ΄ž
2009-07-20 00:00:00
GNU C library dynamic linker $ORIGIN expansion Vulnerability
2014-07-01 00:00:00
packetstorm
packetstorm
GNU C Library Dynamic Linker $ORIGIN Expansion Vulnerability
2010-10-19 00:00:00
exploitpack
exploitpack
GNU C library dynamic linker - $ORIGIN Expansion
2010-10-18 00:00:00
exploitdb
exploitdb
GNU C library dynamic linker - '$ORIGIN' Expansion
2010-10-18 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: kernel-2.6.29.6-217.2.3.fc11
2009-08-05 00:35:52
[SECURITY] Fedora 11 Update: kernel-2.6.29.6-217.2.7.fc11
2009-08-15 21:45:53
[SECURITY] Fedora 10 Update: kernel-2.6.27.29-170.2.78.fc10
2009-08-05 00:30:27
oraclelinux
oraclelinux
Oracle Enterprise Linux 5.4 kernel security and bug fix update
2009-09-08 00:00:00

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON
Related for UB:CVE-2009-1897
cve2prion2openvas29nessus6debian1gentoo1ubuntucve1ubuntu1debiancve1securityvulns5osv1seebug2packetstorm1exploitpack1exploitdb1fedora10oraclelinux1