CVE-2007-3732

Опубликовано: 07 нояб. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 1.9

CVSS3: 5.5

Описание

In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling interrupts, so that "current" references work. Without this, "current" used in the window between iret_exc and the middle of error_code where %fs is reset, would crash.

Релиз	Статус	Примечание
devel	not-affected	4.4.0-21.37
esm-infra-legacy/trusty	not-affected	3.11.0-12.19
esm-infra/xenial	not-affected	4.2.0-16.19
precise	not-affected	3.1.0-1.1
trusty	not-affected	3.11.0-12.19
trusty/esm	not-affected	3.11.0-12.19
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	not-affected	3.16.0-23.31
wily	not-affected	3.19.0-15.15

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	not-affected	3.2.0-1600.1
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	3.4.0-3.10
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.4.0-3.10]]
precise	DNE
trusty	not-affected	3.4.0-3.10
trusty/esm	DNE	trusty was not-affected [3.4.0-3.10]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	not-affected
vivid/ubuntu-core	DNE
wily	not-affected	3.4.0-3.10

Показывать по

Релиз	Статус	Примечание
devel	not-affected	3.4.0-3.14
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.4.0-3.14]]
precise	DNE
trusty	not-affected	3.4.0-3.14
trusty/esm	DNE	trusty was not-affected [3.4.0-3.14]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	not-affected	3.4.0-3.14

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	not-affected	3.13.0-24.46~precise1
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.16.0-25.33~14.04.2]]
precise	DNE
trusty	not-affected	3.16.0-25.33~14.04.2
trusty/esm	DNE	trusty was not-affected [3.16.0-25.33~14.04.2]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.19.0-18.18~14.04.1]]
precise	DNE
trusty	not-affected	3.19.0-18.18~14.04.1
trusty/esm	DNE	trusty was not-affected [3.19.0-18.18~14.04.1]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [4.2.0-18.22~14.04.1]]
precise	DNE
trusty	not-affected	4.2.0-18.22~14.04.1
trusty/esm	DNE	trusty was not-affected [4.2.0-18.22~14.04.1]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-13.29~14.04.1
precise	DNE
trusty	not-affected	4.4.0-13.29~14.04.1
trusty/esm	not-affected	4.4.0-13.29~14.04.1
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	3.4.0-5.28
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.4.0-3.14]]
precise	DNE
trusty	not-affected	3.4.0-3.14
trusty/esm	DNE	trusty was not-affected [3.4.0-3.14]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	not-affected
vivid/ubuntu-core	DNE
wily	not-affected	3.4.0-5.28

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.4.0-6.25]]
precise	DNE
trusty	not-affected	3.4.0-6.25
trusty/esm	DNE	trusty was not-affected [3.4.0-6.25]
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	not-affected	3.4.0-6.25
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.2.0-1014.21
esm-infra-legacy/trusty	DNE
precise	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	not-affected	4.2.0-1014.21
wily	not-affected	4.2.0-1008.12
xenial	not-affected	4.2.0-1013.19

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	not-affected	3.0.0-1401.2
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.23~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE
xenial	DNE

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2007-3732

EPSS

Процентиль: 38%

0.00164

Низкий

1.9 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2007-3732

CVSS3: 5.5

nvd

около 6 лет назад

CVE-2007-3732

CVSS3: 5.5

debian

около 6 лет назад

In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc cal ...

GHSA-6732-cc4q-jp7r

github

больше 3 лет назад

EPSS

Процентиль: 38%

0.00164

Низкий

1.9 Low

CVSS2

5.5 Medium

CVSS3

CVE-2007-3732

Описание

Пакет linux

Пакет linux-armadaxp

Пакет linux-flo

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-linaro-omap

Пакет linux-linaro-shared

Пакет linux-linaro-vexpress

Пакет linux-lts-quantal

Пакет linux-lts-raring

Пакет linux-lts-saucy

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-qcm-msm

Пакет linux-raspi2

Пакет linux-ti-omap4

Ссылки на источники

Связанные уязвимости