CVE-2009-2908

The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount.

CVSS v2.0 4.9 MEDIUM

4.9^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.31.y.git%3Ba=commit%3Bh=afc2b6932f48f200736d3e36ad66fee0ec733136
http://lists.vmware.com/pipermail/security-announce/2010/000082.html
http://secunia.com/advisories/37075
http://secunia.com/advisories/37105
http://secunia.com/advisories/38794
http://secunia.com/advisories/38834
http://www.openwall.com/lists/oss-security/2009/10/06/1
http://www.securityfocus.com/bid/36639	Patch
http://www.ubuntu.com/usn/USN-852-1
http://www.vupen.com/english/advisories/2010/0528
https://bugs.launchpad.net/ecryptfs/+bug/387073
https://bugzilla.redhat.com/show_bug.cgi?id=527534
https://exchange.xforce.ibmcloud.com/vulnerabilities/53693
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10216
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6992
https://rhn.redhat.com/errata/RHSA-2009-1548.html
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00483.html

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:2.6.31:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-10-13 10:30

Updated : 2024-02-28 11:21

NVD link : CVE-2009-2908

Mitre link : CVE-2009-2908

CVE.ORG link : CVE-2009-2908

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-Other

{"id": "CVE-2009-2908", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-10-13T10:30:00.547", "references": [{"url": "http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.31.y.git%3Ba=commit%3Bh=afc2b6932f48f200736d3e36ad66fee0ec733136", "source": "secalert@redhat.com"}, {"url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/37075", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/37105", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/38794", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/38834", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2009/10/06/1", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/36639", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-852-1", "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/0528", "source": "secalert@redhat.com"}, {"url": "https://bugs.launchpad.net/ecryptfs/+bug/387073", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=527534", "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53693", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10216", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6992", "source": "secalert@redhat.com"}, {"url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html", "source": "secalert@redhat.com"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00483.html", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a \"negative dentry\" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount."}, {"lang": "es", "value": "La funci\u00f3n d_delete function en fs/ecryptfs/inode.c en eCryptfs en el kernel de Linux v2.6.31 permite a usuarios locales causar una denegaci\u00f3n de servicio (kernel OOPS) y probablemente ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de vectores no especificados que causa una \"entrada negativa\" y ejecuta una deferencia a puntero NULL, como fue demostrado a trav\u00e9s del directorio temporal Mutt en eCryptifs."}], "lastModified": "2023-02-13T02:20:19.843", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4033E0B-A3A1-4CC5-956A-AAA0FB905DDA"}], "operator": "OR"}]}], "vendorComments": [{"comment": "The Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, and Red Hat Enterprise MRG do not include support for eCryptfs, and therefore are not affected by this issue.\n\nIt was addressed in Red Hat Enterprise Linux 5 via: https://rhn.redhat.com/errata/RHSA-2009-1548.html", "lastModified": "2009-11-04T00:00:00", "organization": "Red Hat"}], "sourceIdentifier": "secalert@redhat.com"}