CVE-2008-2931

Related Files

Ubuntu Security Notice 637-1

Posted Aug 27, 2008

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 637-1 - It was discovered that there were multiple NULL-pointer function dereferences in the Linux kernel terminal handling code. A local attacker could exploit this to execute arbitrary code as root, or crash the system, leading to a denial of service. The do_change_type routine did not correctly validation administrative users. A local attacker could exploit this to block mount points or cause private mounts to be shared, leading to denial of service or a possible loss of privacy. Tobias Klein discovered that the OSS interface through ALSA did not correctly validate the device number. A local attacker could exploit this to access sensitive kernel memory, leading to a denial of service or a loss of privacy. Zoltan Sogor discovered that new directory entries could be added to already deleted directories. A local attacker could exploit this, filling up available memory and disk space, leading to a denial of service.

tags | advisory, denial of service, arbitrary, kernel, local, root

systems | linux, ubuntu

advisories | CVE-2008-2812, CVE-2008-2931, CVE-2008-3272, CVE-2008-3275

SHA-256 | ca0426c0a769cfea0d004df111f7bc27965eadeb0ea4026d54fcf6f94868702f

Download | Favorite | View

Debian Linux Security Advisory 1630-1

Posted Aug 22, 2008

Authored by Debian | Site debian.org

Debian Security Advisory 1630-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or arbitrary code execution.

tags | advisory, denial of service, arbitrary, kernel, vulnerability, code execution

systems | linux, debian

advisories | CVE-2007-6282, CVE-2008-0598, CVE-2008-2729, CVE-2008-2812, CVE-2008-2826, CVE-2008-2931, CVE-2008-3272, CVE-2008-3275

SHA-256 | a2c27af084e632dacda1f2b548a743f20c48db967b5e065f17020aa096f656a0

Download | Favorite | View