5.5

CVE-2007-6716

Exploit
fs/direct-io.c in the dio subsystem in the Linux kernel before 2.6.23 does not properly zero out the dio struct, which allows local users to cause a denial of service (OOPS), as demonstrated by a certain fio test.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 2.6.23
CanonicalUbuntu Linux Version6.06
CanonicalUbuntu Linux Version7.10
CanonicalUbuntu Linux Version8.04
DebianDebian Linux Version4.0
NovellLinux Desktop Version9
OpensuseOpensuse Version10.3
SuseSuse Linux Enterprise Desktop Version10 Updatesp2
SuseSuse Linux Enterprise Server Version10 Updatesp1
SuseSuse Linux Enterprise Server Version10 Updatesp2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.52% 0.398
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/32759
Broken Link
http://rhn.redhat.com/errata/RHSA-2008-0972.html
Third Party Advisory
http://secunia.com/advisories/32799
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23
Broken Link
http://secunia.com/advisories/32023
Broken Link
http://www.redhat.com/support/errata/RHSA-2008-0885.html
Broken Link
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00007.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/32237
Broken Link
http://secunia.com/advisories/32356
Broken Link
http://www.debian.org/security/2008/dsa-1653
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00000.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00008.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/32103
Broken Link
http://secunia.com/advisories/32370
Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2008:220
Broken Link
http://secunia.com/advisories/32393
Broken Link
http://www.ubuntu.com/usn/usn-659-1
Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=848c4dd5153c7a0de55470ce99a8e13a63b4703f
http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00000.html
Third Party Advisory
Mailing List
http://lkml.org/lkml/2007/7/30/448
Third Party Advisory
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2008/09/04/1
Patch
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/31515
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=461082
Patch
Third Party Advisory
Issue Tracking
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10053
Third Party Advisory