CVE-2007-2875 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-2875
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-2875

Description: Integer underflow in the cpuset_tasks_read function in the Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memory contents by using a large offset when reading the /dev/cpuset/tasks file.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/34779 UBUNTU http://www.ubuntu.com/usn/usn-489-1 http://www.ubuntu.com/usn/usn-510-1 http://www.ubuntu.com/usn/usn-486-1 SUSE http://www.novell.com/linux/security/advisories/2007_53_kernel.html ST 1018211 SAID Secunia Advisory: SA26620 Secunia Advisory: SA26760 Secunia Advisory: SA26647 Secunia Advisory: SA26139 Secunia Advisory: SA26133 Secunia Advisory: SA27227 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0705.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:196 http://www.mandriva.com/security/advisories?name=MDKSA-2007:171 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=541 DEBIAN http://www.debian.org/security/2007/dsa-1363 CONFIRM http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.13 http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.4 BID 24389

Return to the previous page.