CVE-2007-3739

Sažetak

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified vectors.

Reference

http://lkml.org/lkml/2007/1/29/180
http://secunia.com/advisories/23955
http://secunia.com/advisories/26760
http://secunia.com/advisories/26955
http://secunia.com/advisories/26978
http://secunia.com/advisories/27436
http://secunia.com/advisories/27747
http://secunia.com/advisories/27913
http://secunia.com/advisories/29058
http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm
http://www.debian.org/security/2007/dsa-1378
http://www.debian.org/security/2008/dsa-1504
http://www.redhat.com/support/errata/RHSA-2007-0705.html
http://www.redhat.com/support/errata/RHSA-2007-0939.html
http://www.redhat.com/support/errata/RHSA-2007-1049.html
http://www.ubuntu.com/usn/usn-518-1
https://bugzilla.redhat.com/show_bug.cgi?id=253313
https://exchange.xforce.ibmcloud.com/vulnerabilities/36592
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11455

CVSS

Base:	4.7
Impact:	6.9
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:L/AC:M/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

29-09-2017 - 01:29

Objavljeno

14-09-2007 - 01:17