Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-2875

Integer underflow in the cpuset_tasks_read function in the Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memory contents by using a large offset when reading the /dev/cpuset/tasks file.

See the

CVE page on Mitre.org for more details.

References

IDEFENSE: 20070607 Linux Kernel ...
CONFIRM: http://kernel.org/pub/...
CONFIRM: http://kernel.org/pub/...
BID: 24389
SECTRACK: 1018211
UBUNTU: USN-486-1
UBUNTU: USN-489-1
SECUNIA: 26133
SECUNIA: 26139
DEBIAN: DSA-1363
UBUNTU: USN-510-1
SECUNIA: 26647
REDHAT: RHSA-2007:0705
SECUNIA: 26760
SECUNIA: 26620
SUSE: SUSE-SA:2007:053
MANDRIVA: MDKSA-2007:171
MANDRIVA: MDKSA-2007:196
SECUNIA: 27227
VUPEN: ADV-2007-2105
OSVDB: 37113
XF: kernel-cpusettasksread...
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2007-2875

Related bugs

References