CVE - CVE-2007-1000

CVE-ID
CVE-2007-1000	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20070615 rPSA-2007-0124-1 kernel xen URL:http://www.securityfocus.com/archive/1/471457 MISC:http://www.wslabi.com/wabisabilabi/initPublishedBid.do? CONFIRM:http://bugzilla.kernel.org/show_bug.cgi?id=8134 CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.2 CONFIRM:https://issues.rpath.com/browse/RPL-1153 FEDORA:FEDORA-2007-335 URL:http://fedoranews.org/cms/node/2787 FEDORA:FEDORA-2007-336 URL:http://fedoranews.org/cms/node/2788 MANDRIVA:MDKSA-2007:078 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:078 REDHAT:RHSA-2007:0169 URL:http://www.redhat.com/support/errata/RHSA-2007-0169.html SUSE:SUSE-SA:2007:029 URL:http://lists.suse.com/archive/suse-security-announce/2007-May/0001.html UBUNTU:USN-486-1 URL:http://www.ubuntu.com/usn/usn-486-1 UBUNTU:USN-489-1 URL:http://www.ubuntu.com/usn/usn-489-1 CERT-VN:VU#920689 URL:http://www.kb.cert.org/vuls/id/920689 BID:22904 URL:http://www.securityfocus.com/bid/22904 OVAL:oval:org.mitre.oval:def:10015 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10015 VUPEN:ADV-2007-0907 URL:http://www.vupen.com/english/advisories/2007/0907 OSVDB:33025 URL:http://www.osvdb.org/33025 SECUNIA:24518 URL:http://secunia.com/advisories/24518 SECUNIA:24777 URL:http://secunia.com/advisories/24777 SECUNIA:24901 URL:http://secunia.com/advisories/24901 SECUNIA:25080 URL:http://secunia.com/advisories/25080 SECUNIA:25099 URL:http://secunia.com/advisories/25099 SECUNIA:25691 URL:http://secunia.com/advisories/25691 SECUNIA:24493 URL:http://secunia.com/advisories/24493 SECUNIA:26133 URL:http://secunia.com/advisories/26133 SECUNIA:26139 URL:http://secunia.com/advisories/26139
Assigning CNA
N/A
Date Entry Created
20070216	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070216)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org