Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-3620

Опубликовано: 22 окт. 2009
Источник: nvd
CVSS3: 7.8
CVSS2: 4.9
EPSS Низкий

Описание

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 2.6.31.1 (исключая)
Конфигурация 2
cpe:2.3:o:fedoraproject:fedora:10:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
Конфигурация 4
cpe:2.3:a:redhat:mrg_realtime:1.0:*:*:*:*:*:*:*
Конфигурация 5

Одно из

cpe:2.3:a:suse:linux_enterprise_debuginfo:10:sp2:*:*:*:*:*:*
cpe:2.3:a:suse:linux_enterprise_debuginfo:10:sp3:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp2:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:-:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*

EPSS

Процентиль: 27%
0.00089
Низкий

7.8 High

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2009-3620

CVSS3: 7.8
ubuntu
больше 15 лет назад

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.

redhat логотип

CVE-2009-3620

redhat
почти 16 лет назад

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.

debian логотип

CVE-2009-3620

CVSS3: 7.8
debian
больше 15 лет назад

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-g ...

github логотип

GHSA-rgrv-jr8m-xv3m

CVSS3: 7.8
github
около 3 лет назад

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.

oracle-oval логотип

ELSA-2009-1670

oracle-oval
больше 15 лет назад

ELSA-2009-1670: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 27%
0.00089
Низкий

7.8 High

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-476