CVE-2008-1367

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmove on x86 and i386, which can prevent the direction flag (DF) from being reset in violation of ABI conventions and cause data to be copied in the wrong direction during signal handling in the Linux kernel, which might allow context-dependent attackers to trigger memory corruption. NOTE: this issue was originally reported for CPU consumption in SBCL.

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469058

http://gcc.gnu.org/ml/gcc-patches/2008-03/msg00417.html

http://gcc.gnu.org/ml/gcc-patches/2008-03/msg00428.html

http://gcc.gnu.org/ml/gcc-patches/2008-03/msg00432.html

http://gcc.gnu.org/ml/gcc-patches/2008-03/msg00499.html

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e40cd10ccff3d9fbffd57b93780bee4b7b9bff51

http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html

http://lists.vmware.com/pipermail/security-announce/2008/000023.html

http://lkml.org/lkml/2008/3/5/207

http://lwn.net/Articles/272048/#Comments

http://marc.info/?l=git-commits-head&m=120492000901739&w=2

http://rhn.redhat.com/errata/RHSA-2008-0508.html

http://secunia.com/advisories/30110

http://secunia.com/advisories/30116

http://secunia.com/advisories/30818

http://secunia.com/advisories/30850

http://secunia.com/advisories/30890

http://secunia.com/advisories/30962

http://secunia.com/advisories/31246

http://www.redhat.com/support/errata/RHSA-2008-0211.html

http://www.redhat.com/support/errata/RHSA-2008-0233.html

http://www.securityfocus.com/bid/29084

http://www.vupen.com/english/advisories/2008/2222/references

https://bugzilla.redhat.com/show_bug.cgi?id=437312

https://exchange.xforce.ibmcloud.com/vulnerabilities/41340

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11108

Details

Source: MITRE

Published: 2008-03-17

Updated: 2017-09-29

Type: CWE-399

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:gnu:gcc:4.3:*:*:*:*:*:*:*

Tenable Plugins

View all (18 total)

IDNameProductFamilySeverity
67703Oracle Linux 4 : kernel (ELSA-2008-0508)NessusOracle Linux Local Security Checks
high
67683Oracle Linux 5 : kernel (ELSA-2008-0233)NessusOracle Linux Local Security Checks
high
67678Oracle Linux 3 : kernel (ELSA-2008-0211)NessusOracle Linux Local Security Checks
high
60429Scientific Linux Security Update : kernel on SL4.x i386/x86_64NessusScientific Linux Local Security Checks
high
60395Scientific Linux Security Update : kernel on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
60393Scientific Linux Security Update : kernel on SL3.x i386/x86_64NessusScientific Linux Local Security Checks
high
59128SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 5370)NessusSuSE Local Security Checks
high
43681CentOS 5 : kernel (CESA-2008:0233)NessusCentOS Local Security Checks
high
40380VMSA-2008-0011 : Updated ESX service console packages for Samba and vmnixNessusVMware ESX Local Security Checks
high
33432SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 5375)NessusSuSE Local Security Checks
high
33376RHEL 4 : kernel (RHSA-2008:0508)NessusRed Hat Local Security Checks
high
33365CentOS 4 : kernel (CESA-2008:0508)NessusCentOS Local Security Checks
high
33253openSUSE 10 Security Update : kernel (kernel-5339)NessusSuSE Local Security Checks
high
33252openSUSE 10 Security Update : kernel (kernel-5336)NessusSuSE Local Security Checks
high
32161RHEL 5 : kernel (RHSA-2008:0233)NessusRed Hat Local Security Checks
high
32160RHEL 3 : kernel (RHSA-2008:0211)NessusRed Hat Local Security Checks
high
32139CentOS 3 : kernel (CESA-2008:0211)NessusCentOS Local Security Checks
high
801450CentOS RHSA-2008-0233 Security CheckLog Correlation EngineGeneric
high