CVE - CVE-2008-0600

CVE-ID
CVE-2008-0600	Learn more at National Vulnerability Database (NVD) • Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20080212 rPSA-2008-0052-1 kernel URL:http://www.securityfocus.com/archive/1/archive/1/488009/100/0/threaded EXPLOIT-DB:5092 URL:https://www.exploit-db.com/exploits/5092 MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit URL:http://marc.info/?l=linux-kernel&m=120264773202422&w=2 MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit URL:http://marc.info/?l=linux-kernel&m=120263652322197&w=2 MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit URL:http://marc.info/?l=linux-kernel&m=120264520431307&w=2 MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit URL:http://marc.info/?l=linux-kernel&m=120266328220808&w=2 MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit URL:http://marc.info/?l=linux-kernel&m=120266353621139&w=2 CONFIRM:http://wiki.rpath.com/Advisories:rPSA-2008-0052 CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0052 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=432229 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=432517 CONFIRM:https://issues.rpath.com/browse/RPL-2237 DEBIAN:DSA-1494 URL:http://www.debian.org/security/2008/dsa-1494 FEDORA:FEDORA-2008-1422 URL:https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00254.html FEDORA:FEDORA-2008-1423 URL:https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00255.html FEDORA:FEDORA-2008-1433 URL:https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00270.html FEDORA:FEDORA-2008-1629 URL:https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00485.html MANDRIVA:MDVSA-2008:043 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:043 MANDRIVA:MDVSA-2008:044 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:044 REDHAT:RHSA-2008:0129 URL:http://www.redhat.com/support/errata/RHSA-2008-0129.html SUSE:SUSE-SA:2008:007 URL:http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html SUSE:SUSE-SA:2008:013 URL:http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00002.html SUSE:SUSE-SA:2008:030 URL:http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html UBUNTU:USN-577-1 URL:http://www.ubuntu.com/usn/usn-577-1 BID:27704 URL:http://www.securityfocus.com/bid/27704 BID:27801 URL:http://www.securityfocus.com/bid/27801 OVAL:oval:org.mitre.oval:def:11358 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11358 VUPEN:ADV-2008-0487 URL:http://www.vupen.com/english/advisories/2008/0487/references SECTRACK:1019393 URL:http://securitytracker.com/id?1019393 SECUNIA:28835 URL:http://secunia.com/advisories/28835 SECUNIA:28858 URL:http://secunia.com/advisories/28858 SECUNIA:28875 URL:http://secunia.com/advisories/28875 SECUNIA:28896 URL:http://secunia.com/advisories/28896 SECUNIA:28889 URL:http://secunia.com/advisories/28889 SECUNIA:28912 URL:http://secunia.com/advisories/28912 SECUNIA:28925 URL:http://secunia.com/advisories/28925 SECUNIA:28933 URL:http://secunia.com/advisories/28933 SECUNIA:28937 URL:http://secunia.com/advisories/28937 SECUNIA:29245 URL:http://secunia.com/advisories/29245 SECUNIA:30818 URL:http://secunia.com/advisories/30818
Assigning CNA
N/A
Date Entry Created
20080205	Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080205)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE list, which standardizes names for security problems.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures List and the associated references from this Web site are subject to the Terms of Use. For more information, please email cve@mitre.org.

CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks and CVE-Compatible is a trademark of The MITRE Corporation.

Site Map
Privacy policy
Terms of use
Contact us