Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2008-3272

Опубликовано: 08 авг. 2008
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 2.1

Описание

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.

РелизСтатусПримечание
dapper

DNE

devel

released

2.6.27-2.3
feisty

DNE

gutsy

DNE

hardy

released

2.6.24-19.41
upstream

released

2.6.27~rc2

Показывать по

РелизСтатусПримечание
dapper

released

2.6.15-52.71
devel

DNE

feisty

DNE

gutsy

DNE

hardy

DNE

upstream

released

2.6.27~rc2

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

feisty

released

2.6.20-17.39
gutsy

DNE

hardy

DNE

upstream

released

2.6.27~rc2

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

feisty

DNE

gutsy

released

2.6.22-15.58
hardy

DNE

upstream

released

2.6.27~rc2

Показывать по

Ссылки на источники

EPSS

Процентиль: 20%
0.00063
Низкий

2.1 Low

CVSS2

Связанные уязвимости

redhat логотип

CVE-2008-3272

redhat
почти 17 лет назад

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.

nvd логотип

CVE-2008-3272

nvd
почти 17 лет назад

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.

debian логотип

CVE-2008-3272

debian
почти 17 лет назад

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss ...

github логотип

GHSA-qg44-g4p3-cf6x

github
около 3 лет назад

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.

fstec логотип

BDU:2015-05017

fstec
больше 10 лет назад

Уязвимости операционной системы openSUSE, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 20%
0.00063
Низкий

2.1 Low

CVSS2

Уязвимость CVE-2008-3272