CVE-2007-4133

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-4133
The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain prio_tree calculations using HPAGE_SIZE instead of PAGE_SIZE units, which allows local users to cause a denial of service (panic) via unspecified vectors.

4.7 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 3.4 / Impact : 6.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://secunia.com/advisories/26994
http://secunia.com/advisories/27322
http://secunia.com/advisories/28170
http://secunia.com/advisories/28971
http://secunia.com/advisories/29058
http://tree.celinuxforum.org/gitstat/commit-detail.php?commit=856fc29505556cf263f3dcda2533cf3766c14ab6
http://www.debian.org/security/2007/dsa-1381
http://www.debian.org/security/2008/dsa-1504
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.19-rc4
http://www.mandriva.com/security/advisories?name=MDKSA-2007:216
http://www.mandriva.com/security/advisories?name=MDVSA-2008:008
http://www.mandriva.com/security/advisories?name=MDVSA-2008:105
http://www.redhat.com/support/errata/RHSA-2007-0940.html
http://www.securityfocus.com/bid/25904 Patch
http://www.ubuntu.com/usn/usn-558-1
http://www.ubuntu.com/usn/usn-578-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/36925
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10451
http://secunia.com/advisories/26994
http://secunia.com/advisories/27322
http://secunia.com/advisories/28170
http://secunia.com/advisories/28971
http://secunia.com/advisories/29058
http://tree.celinuxforum.org/gitstat/commit-detail.php?commit=856fc29505556cf263f3dcda2533cf3766c14ab6
http://www.debian.org/security/2007/dsa-1381
http://www.debian.org/security/2008/dsa-1504
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.19-rc4
http://www.mandriva.com/security/advisories?name=MDKSA-2007:216
http://www.mandriva.com/security/advisories?name=MDVSA-2008:008
http://www.mandriva.com/security/advisories?name=MDVSA-2008:105
http://www.redhat.com/support/errata/RHSA-2007-0940.html
http://www.securityfocus.com/bid/25904 Patch
http://www.ubuntu.com/usn/usn-558-1
http://www.ubuntu.com/usn/usn-578-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/36925
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10451
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:rc3:*:*:*:*:*:*
History

21 Nov 2024, 00:34

Type Values Removed Values Added
References () http://secunia.com/advisories/26994 - () http://secunia.com/advisories/26994 -
References () http://secunia.com/advisories/27322 - () http://secunia.com/advisories/27322 -
References () http://secunia.com/advisories/28170 - () http://secunia.com/advisories/28170 -
References () http://secunia.com/advisories/28971 - () http://secunia.com/advisories/28971 -
References () http://secunia.com/advisories/29058 - () http://secunia.com/advisories/29058 -
References () http://tree.celinuxforum.org/gitstat/commit-detail.php?commit=856fc29505556cf263f3dcda2533cf3766c14ab6 - () http://tree.celinuxforum.org/gitstat/commit-detail.php?commit=856fc29505556cf263f3dcda2533cf3766c14ab6 -
References () http://www.debian.org/security/2007/dsa-1381 - () http://www.debian.org/security/2007/dsa-1381 -
References () http://www.debian.org/security/2008/dsa-1504 - () http://www.debian.org/security/2008/dsa-1504 -
References () http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.19-rc4 - () http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.19-rc4 -
References () http://www.mandriva.com/security/advisories?name=MDKSA-2007:216 - () http://www.mandriva.com/security/advisories?name=MDKSA-2007:216 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:008 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:008 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:105 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:105 -
References () http://www.redhat.com/support/errata/RHSA-2007-0940.html - () http://www.redhat.com/support/errata/RHSA-2007-0940.html -
References () http://www.securityfocus.com/bid/25904 - Patch () http://www.securityfocus.com/bid/25904 - Patch
References () http://www.ubuntu.com/usn/usn-558-1 - () http://www.ubuntu.com/usn/usn-558-1 -
References () http://www.ubuntu.com/usn/usn-578-1 - () http://www.ubuntu.com/usn/usn-578-1 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/36925 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/36925 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10451 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10451 -
Information

Published : 2007-10-04 23:17

Updated : 2024-11-21 00:34

NVD link : CVE-2007-4133

Mitre link : CVE-2007-4133

CVE.ORG link : CVE-2007-4133

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
NVD-CWE-Other

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024