7.8

CVE-2008-2812

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 2.6.25.10
CanonicalUbuntu Linux Version6.06 SwEditionlts
CanonicalUbuntu Linux Version7.04
CanonicalUbuntu Linux Version7.10
CanonicalUbuntu Linux Version8.04 SwEditionlts
NovellLinux Desktop Version9
OpensuseOpensuse Version10.3
OpensuseOpensuse Version11.0
SuseSuse Linux Enterprise Desktop Version10 Updatesp1
SuseSuse Linux Enterprise Desktop Version10 Updatesp2
SuseSuse Linux Enterprise Server Version10 Updatesp1
SuseSuse Linux Enterprise Server Version10 Updatesp2
DebianDebian Linux Version4.0
AvayaCommunication Manager Version >= 3.1
AvayaIntuity Audix Lx Version2.0
AvayaMeeting Exchange Version5.0
AvayaMessage Networking Version3.1
AvayaProactive Contact Version4.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.43% 0.339
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

http://secunia.com/advisories/31229
Broken Link
http://secunia.com/advisories/31685
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2008-365.htm
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0665.html
Broken Link
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/32759
Broken Link
http://secunia.com/advisories/33201
Broken Link
http://www.redhat.com/support/errata/RHSA-2008-0973.html
Broken Link
http://secunia.com/advisories/31341
Broken Link
http://www.redhat.com/support/errata/RHSA-2008-0612.html
Broken Link
http://secunia.com/advisories/31551
Broken Link
http://www.debian.org/security/2008/dsa-1630
Patch
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00007.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00012.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/30982
Broken Link
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00000.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00003.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00008.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/32103
Broken Link
http://secunia.com/advisories/32370
Broken Link
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00009.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/31202
Broken Link
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.25.y.git%3Ba=commitdiff%3Bh=2a739dd53ad7ee010ae6e155438507f329dce788
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.10
Broken Link
http://secunia.com/advisories/31048
Broken Link
http://secunia.com/advisories/31614
Broken Link
http://www.openwall.com/lists/oss-security/2008/07/03/2
Patch
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/30076
Patch
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2063/references
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/43687
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11632
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6633
Third Party Advisory
https://usn.ubuntu.com/637-1/
Third Party Advisory