CVE-2007-0253

Опубликовано: 16 янв. 2007

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expand_stack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven

Ссылки

http://forums.grsecurity.net/viewtopic.php?t=1646
Vendor Advisory
http://grsecurity.net/news.php#digitalfud
http://www.digitalarmaments.com/news_news.shtml
Vendor Advisory
URL Repurposed
http://forums.grsecurity.net/viewtopic.php?t=1646
Vendor Advisory
http://grsecurity.net/news.php#digitalfud
http://www.digitalarmaments.com/news_news.shtml
Vendor Advisory
URL Repurposed

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:*:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00155

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2007-0253

debian

почти 19 лет назад

Unspecified vulnerability in the grsecurity patch has unspecified impa ...

GHSA-3h7g-j24x-p7v7

github

больше 3 лет назад

** DISPUTED ** Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expand_stack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven.