7.2
CVE-2007-6151
- EPSS 0.56%
- Veröffentlicht 15.12.2007 01:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:30
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version2.6.23
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.56% | 0.419 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://secunia.com/advisories/29058
http://www.debian.org/security/2008/dsa-1503
http://secunia.com/advisories/33280
http://www.redhat.com/support/errata/RHSA-2008-0787.html
http://www.debian.org/security/2008/dsa-1504
http://secunia.com/advisories/28706
http://secunia.com/advisories/28971
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112
http://www.ubuntu.com/usn/usn-574-1
http://www.ubuntu.com/usn/usn-578-1
http://lists.vmware.com/pipermail/security-announce/2008/000023.html
http://secunia.com/advisories/30110
http://secunia.com/advisories/31246
http://www.redhat.com/support/errata/RHSA-2008-0211.html
http://www.vupen.com/english/advisories/2008/2222/references
http://secunia.com/advisories/28626
http://www.debian.org/security/2008/dsa-1479
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html
http://secunia.com/advisories/29570
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html
http://rhn.redhat.com/errata/RHSA-2008-0055.html
http://secunia.com/advisories/28748
http://secunia.com/advisories/30962
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html
http://secunia.com/advisories/28889
http://www.mandriva.com/security/advisories?name=MDVSA-2008:086
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=eafe1aa37e6ec2d56f14732b5240c4dd09f0613a
http://www.securityfocus.com/bid/27497
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10971