Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
	Software Inspectors   Scan Online   Personal (PSI)   Network (NSI 2.0) Solutions For   Security Professionals   Security Vendors Free Solutions For   Open Communities   Journalists & Media Secunia Advisories   Search   Historic Advisories   Listed By Product   Listed By Vendor   Statistics / Graphs   Secunia Research   Report Vulnerability   About Advisories Virus Information   Chronological List   Last 10 Virus Alerts   About Virus Information Secunia Customers   Customer Area CVE Reference: CVE-2007-4571 NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. Original Page at CVE MITRE: CVE-2007-4571 Description: The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information (kernel memory contents) via a small count argument, as demonstrated by multiple reads of /proc/driver/snd-page-alloc. CVE Status: Candidate References: XF   http://xforce.iss.net/xforce/xfdb/36780 SUSE   http://www.novell.com/linux/security/advisories/2007_53_kernel.html ST   1018734 SAID   Secunia Advisory: SA29054   Secunia Advisory: SA28626   Secunia Advisory: SA27824   Secunia Advisory: SA27747   Secunia Advisory: SA27227   Secunia Advisory: SA27436   Secunia Advisory: SA27101   Secunia Advisory: SA26989   Secunia Advisory: SA26980   Secunia Advisory: SA26918   Secunia Advisory: SA30769 REDHAT   http://www.redhat.com/support/errata/RHSA-2007-0939.html   http://www.redhat.com/support/errata/RHSA-2007-0993.html IDEFENSE   http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=600 FEDORA DEBIAN   http://www.debian.org/security/2008/dsa-1479   http://www.debian.org/security/2008/dsa-1505 CONFIRM   http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ccec6e2c4a74adf76ed4e2478091a311b1806212   http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm   http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.8 BID   25807 Return to the previous page. Secunia PSI Scan | Patch | Track Free Download Secunia Poll Do you think it's important to read Setup/User Guides for applications for use within your network? Yes, I do it all the time Yes, but I do it rarely No See Results    Most Popular Advisories 1. Mozilla Firefox Multiple Vulnerabilities 2. Opera for Windows Unspecified Code Execution 3. Mozilla Thunderbird Multiple Vulnerabilities 4. VLC Media Player WAV Processing Integer Overflow 5. Opera Canvas Functions Information Disclosure 6. GNOME Glib PCRE pcre_compile.c Buffer Overflow Vulnerability 7. PCRE pcre_compile.c Buffer Overflow Vulnerability 8. Fedora update for glib2 9. UnixWare ReliantHA Privilege Escalation Vulnerabilities 10. zlib Denial of Service Vulnerability
Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia