CVE Vulnerabilities

CVE-2008-3527

Published: Nov 05, 2008 | Modified: Sep 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

arch/i386/kernel/sysenter.c in the Virtual Dynamic Shared Objects (vDSO) implementation in the Linux kernel before 2.6.21 does not properly check boundaries, which allows local users to gain privileges or cause a denial of service via unspecified vectors, related to the install_special_mapping, syscall, and syscall32_nopage functions.

Affected Software

Name Vendor Start Version End Version
Linux_kernel Linux 2.2.27 2.2.27
Linux_kernel Linux 2.4.36 2.4.36
Linux_kernel Linux 2.4.36.1 2.4.36.1
Linux_kernel Linux 2.4.36.2 2.4.36.2
Linux_kernel Linux 2.4.36.3 2.4.36.3
Linux_kernel Linux 2.4.36.4 2.4.36.4
Linux_kernel Linux 2.4.36.5 2.4.36.5
Linux_kernel Linux 2.4.36.6 2.4.36.6
Linux_kernel Linux 2.6 2.6
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.18 2.6.18
Linux_kernel Linux 2.6.19.4 2.6.19.4
Linux_kernel Linux 2.6.19.5 2.6.19.5
Linux_kernel Linux 2.6.19.6 2.6.19.6
Linux_kernel Linux 2.6.19.7 2.6.19.7
Linux_kernel Linux 2.6.20.16 2.6.20.16
Linux_kernel Linux 2.6.20.17 2.6.20.17
Linux_kernel Linux 2.6.20.18 2.6.20.18
Linux_kernel Linux 2.6.20.19 2.6.20.19
Linux_kernel Linux 2.6.20.20 2.6.20.20
Linux_kernel Linux * 2.6.20.21
Red Hat Enterprise Linux 5 RedHat kernel-0:2.6.18-92.1.18.el5 *
Linux Ubuntu upstream *
Linux-source-2.6.22 Ubuntu upstream *

References