7.2

CVE-2007-6151

The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.23
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.56% 0.419
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://secunia.com/advisories/29058
http://www.debian.org/security/2008/dsa-1503
http://secunia.com/advisories/33280
http://www.redhat.com/support/errata/RHSA-2008-0787.html
http://www.debian.org/security/2008/dsa-1504
http://secunia.com/advisories/28706
http://secunia.com/advisories/28971
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112
http://www.ubuntu.com/usn/usn-574-1
http://www.ubuntu.com/usn/usn-578-1
http://lists.vmware.com/pipermail/security-announce/2008/000023.html
http://secunia.com/advisories/30110
http://secunia.com/advisories/31246
http://www.redhat.com/support/errata/RHSA-2008-0211.html
http://www.vupen.com/english/advisories/2008/2222/references
http://secunia.com/advisories/28626
http://www.debian.org/security/2008/dsa-1479
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html
http://secunia.com/advisories/29570
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html
http://rhn.redhat.com/errata/RHSA-2008-0055.html
http://secunia.com/advisories/28748
http://secunia.com/advisories/30962
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html
http://secunia.com/advisories/28889
http://www.mandriva.com/security/advisories?name=MDVSA-2008:086
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=eafe1aa37e6ec2d56f14732b5240c4dd09f0613a
http://www.securityfocus.com/bid/27497
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10971