CVE-2007-3739

MEDIUM

Description

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified vectors.

References

http://lkml.org/lkml/2007/1/29/180

http://secunia.com/advisories/23955

http://secunia.com/advisories/26760

http://secunia.com/advisories/26955

http://secunia.com/advisories/26978

http://secunia.com/advisories/27436

http://secunia.com/advisories/27747

http://secunia.com/advisories/27913

http://secunia.com/advisories/29058

http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm

http://www.debian.org/security/2007/dsa-1378

http://www.debian.org/security/2008/dsa-1504

http://www.redhat.com/support/errata/RHSA-2007-0705.html

http://www.redhat.com/support/errata/RHSA-2007-0939.html

http://www.redhat.com/support/errata/RHSA-2007-1049.html

http://www.ubuntu.com/usn/usn-518-1

https://bugzilla.redhat.com/show_bug.cgi?id=253313

https://exchange.xforce.ibmcloud.com/vulnerabilities/36592

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11455

Details

Source: MITRE

Published: 2007-09-14

Updated: 2017-09-29

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 4.7

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.4

Severity: MEDIUM

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:o:redhat:enterprise_linux:5.0:*:client:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:5.0:*:server:*:*:*:*:*

OR

cpe:2.3:h:apple:powerpc:*:*:*:*:*:*:*:*

Tenable Plugins

View all (17 total)

IDNameProductFamilySeverity
67609Oracle Linux 3 : kernel (ELSA-2007-1049)NessusOracle Linux Local Security Checks
medium
67580Oracle Linux 4 : kernel (ELSA-2007-0939)NessusOracle Linux Local Security Checks
medium
67543Oracle Linux 5 : kernel (ELSA-2007-0705)NessusOracle Linux Local Security Checks
medium
60321Scientific Linux Security Update : kernel on SL3.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60280Scientific Linux Security Update : kernel on SL4.x i386/x86_64NessusScientific Linux Local Security Checks
medium
43648CentOS 5 : kernel (CESA-2007:0705)NessusCentOS Local Security Checks
medium
37953CentOS 4 : kernel (CESA-2007:0939)NessusCentOS Local Security Checks
medium
31148Debian DSA-1504-1 : kernel-source-2.6.8 - several vulnerabilitiesNessusDebian Local Security Checks
high
29203RHEL 3 : kernel (RHSA-2007:1049)NessusRed Hat Local Security Checks
medium
29190CentOS 3 : kernel (CESA-2007:1049)NessusCentOS Local Security Checks
medium
28123Ubuntu 6.06 LTS / 6.10 / 7.04 : linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20 vulnerabilities (USN-518-1)NessusUbuntu Local Security Checks
high
27616RHEL 4 : kernel (RHSA-2007:0939)NessusRed Hat Local Security Checks
medium
26208Debian DSA-1378-2 : linux-2.6 - several vulnerabilitiesNessusDebian Local Security Checks
high
26050RHEL 5 : kernel (RHSA-2007:0705)NessusRed Hat Local Security Checks
medium
801441CentOS RHSA-2007-1049 Security CheckLog Correlation EngineGeneric
high
801439CentOS RHSA-2007-0939 Security CheckLog Correlation EngineGeneric
high
801434CentOS RHSA-2007-0705 Security CheckLog Correlation EngineGeneric
high