4.4

CVE-2008-2137

Exploit
The (1) sparc_mmap_check function in arch/sparc/kernel/sys_sparc.c and the (2) sparc64_mmap_check function in arch/sparc64/kernel/sys_sparc.c, in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3, omit some virtual-address range (aka span) checks when the mmap MAP_FIXED bit is not set, which allows local users to cause a denial of service (panic) via unspecified mmap calls.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DebianDebian Linux Version4.0 Editionsparc
LinuxLinux Kernel Version2.6.0
LinuxLinux Kernel Version2.6.1
LinuxLinux Kernel Version2.6.2
LinuxLinux Kernel Version2.6.3
LinuxLinux Kernel Version2.6.4
LinuxLinux Kernel Version2.6.5
LinuxLinux Kernel Version2.6.6
LinuxLinux Kernel Version2.6.7
LinuxLinux Kernel Version2.6.8
LinuxLinux Kernel Version2.6.9
LinuxLinux Kernel Version2.6.10
LinuxLinux Kernel Version2.6.11
LinuxLinux Kernel Version2.6.11.4
LinuxLinux Kernel Version2.6.11.5
LinuxLinux Kernel Version2.6.11.6
LinuxLinux Kernel Version2.6.11.7
LinuxLinux Kernel Version2.6.11.8
LinuxLinux Kernel Version2.6.11.11
LinuxLinux Kernel Version2.6.11.12
LinuxLinux Kernel Version2.6.12
LinuxLinux Kernel Version2.6.12.1
LinuxLinux Kernel Version2.6.12.2
LinuxLinux Kernel Version2.6.12.3
LinuxLinux Kernel Version2.6.12.4
LinuxLinux Kernel Version2.6.12.5
LinuxLinux Kernel Version2.6.12.6
LinuxLinux Kernel Version2.6.12.12
LinuxLinux Kernel Version2.6.12.22
LinuxLinux Kernel Version2.6.13
LinuxLinux Kernel Version2.6.13.1
LinuxLinux Kernel Version2.6.13.2
LinuxLinux Kernel Version2.6.13.3
LinuxLinux Kernel Version2.6.13.4
LinuxLinux Kernel Version2.6.14
LinuxLinux Kernel Version2.6.14.1
LinuxLinux Kernel Version2.6.14.2
LinuxLinux Kernel Version2.6.14.3
LinuxLinux Kernel Version2.6.14.4
LinuxLinux Kernel Version2.6.14.5
LinuxLinux Kernel Version2.6.15
LinuxLinux Kernel Version2.6.15.1
LinuxLinux Kernel Version2.6.15.2
LinuxLinux Kernel Version2.6.15.3
LinuxLinux Kernel Version2.6.15.4
LinuxLinux Kernel Version2.6.15.5
LinuxLinux Kernel Version2.6.15.11
LinuxLinux Kernel Version2.6.16
LinuxLinux Kernel Version2.6.16.13
LinuxLinux Kernel Version2.6.16.27
LinuxLinux Kernel Version2.6.17
LinuxLinux Kernel Version2.6.17.1
LinuxLinux Kernel Version2.6.17.2
LinuxLinux Kernel Version2.6.17.3
LinuxLinux Kernel Version2.6.17.5
LinuxLinux Kernel Version2.6.17.6
LinuxLinux Kernel Version2.6.17.7
LinuxLinux Kernel Version2.6.17.8
LinuxLinux Kernel Version2.6.17.10
LinuxLinux Kernel Version2.6.17.11
LinuxLinux Kernel Version2.6.17.12
LinuxLinux Kernel Version2.6.17.13
LinuxLinux Kernel Version2.6.17.14
LinuxLinux Kernel Version2.6.18
LinuxLinux Kernel Version2.6.18.1
LinuxLinux Kernel Version2.6.18.3
LinuxLinux Kernel Version2.6.18.4
LinuxLinux Kernel Version2.6.19
LinuxLinux Kernel Version2.6.19.1
LinuxLinux Kernel Version2.6.19.2
LinuxLinux Kernel Version2.6.20
LinuxLinux Kernel Version2.6.20.1
LinuxLinux Kernel Version2.6.20.2
LinuxLinux Kernel Version2.6.20.3
LinuxLinux Kernel Version2.6.20.4
LinuxLinux Kernel Version2.6.20.5
LinuxLinux Kernel Version2.6.20.8
LinuxLinux Kernel Version2.6.20.9
LinuxLinux Kernel Version2.6.20.11
LinuxLinux Kernel Version2.6.20.13
LinuxLinux Kernel Version2.6.20.15
LinuxLinux Kernel Version2.6.21
LinuxLinux Kernel Version2.6.21.1
LinuxLinux Kernel Version2.6.21.2
LinuxLinux Kernel Version2.6.21.4
LinuxLinux Kernel Version2.6.21.6
LinuxLinux Kernel Version2.6.21.7
LinuxLinux Kernel Version2.6.22
LinuxLinux Kernel Version2.6.22.3
LinuxLinux Kernel Version2.6.22.4
LinuxLinux Kernel Version2.6.22.5
LinuxLinux Kernel Version2.6.22.6
LinuxLinux Kernel Version2.6.22.7
LinuxLinux Kernel Version2.6.22.8
LinuxLinux Kernel Version2.6.22.11
LinuxLinux Kernel Version2.6.22.12
LinuxLinux Kernel Version2.6.22.13
LinuxLinux Kernel Version2.6.22.14
LinuxLinux Kernel Version2.6.22.15
LinuxLinux Kernel Version2.6.22.16
LinuxLinux Kernel Version2.6.22.17
LinuxLinux Kernel Version2.6.23
LinuxLinux Kernel Version2.6.23.1
LinuxLinux Kernel Version2.6.23.2
LinuxLinux Kernel Version2.6.23.3
LinuxLinux Kernel Version2.6.23.4
LinuxLinux Kernel Version2.6.23.5
LinuxLinux Kernel Version2.6.23.6
LinuxLinux Kernel Version2.6.23.7
LinuxLinux Kernel Version2.6.23.9
LinuxLinux Kernel Version2.6.23.14
LinuxLinux Kernel Version2.6.24.1
LinuxLinux Kernel Version2.6.24.2
LinuxLinux Kernel Version2.6.25
LinuxLinux Kernel Version2.6.25.1
LinuxLinux Kernel Version2.6.25.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.45% 0.354
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.4 3.4 6.4
AV:L/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/30368
Vendor Advisory
http://secunia.com/advisories/31107
http://www.debian.org/security/2008/dsa-1588
http://www.ubuntu.com/usn/usn-625-1
http://secunia.com/advisories/30499
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.36.5
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.3
http://www.vupen.com/english/advisories/2008/1716/references
http://kerneltrap.org/mailarchive/git-commits-head/2008/5/8/1760604
Exploit
http://www.securityfocus.com/bid/29397
http://www.securitytracker.com/id?1020119
https://exchange.xforce.ibmcloud.com/vulnerabilities/42681