Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-4302

Опубликовано: 29 сент. 2008
Источник: nvd
CVSS3: 5.5
CVSS2: 4.9
EPSS Низкий

Описание

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as demonstrated by the fio I/O tool.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 2.6.22.2 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*

EPSS

Процентиль: 36%
0.00147
Низкий

5.5 Medium

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-667

Связанные уязвимости

ubuntu логотип

CVE-2008-4302

CVSS3: 5.5
ubuntu
почти 17 лет назад

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as demonstrated by the fio I/O tool.

redhat логотип

CVE-2008-4302

redhat
около 18 лет назад

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as demonstrated by the fio I/O tool.

debian логотип

CVE-2008-4302

CVSS3: 5.5
debian
почти 17 лет назад

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22. ...

github логотип

GHSA-vxc2-696q-6c9j

CVSS3: 5.5
github
больше 3 лет назад

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as demonstrated by the fio I/O tool.

oracle-oval логотип

ELSA-2008-0957

oracle-oval
почти 17 лет назад

ELSA-2008-0957: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 36%
0.00147
Низкий

5.5 Medium

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-667