CVE-2007-3731 — Vulnetix

CVE-2007-3731 PUBLISHED

Reported by redhat · Published September 17, 2007

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain code that makes ptrace PTRACE_SETREGS and PTRACE_SINGLESTEP requests, related to the TRACE_IRQS_ON function, and possibly related to the arch_ptrace function.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	*, n/a, n/a

Exploit Intelligence

http://bugzilla.kernel.org/show_bug.cgi?id=8765 (vulncheck-nvd)

Timeline

Sep 17, 2007 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
Jul 17, 2023 EPSS Score
Sep 8, 2023 EPSS Score

References

25801 vdb-entryx_refsource_BID
x_refsource_MISC
x_refsource_CONFIRM
37286 vdb-entryx_refsource_OSVDB
RHSA-2007:0940 vendor-advisoryx_refsource_REDHAT
29159 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
27322 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
26978 third-party-advisoryx_refsource_SECUNIA
20080229 rPSA-2008-0094-1 kernel mailing-listx_refsource_BUGTRAQ
x_refsource_CONFIRM
USN-518-1 vendor-advisoryx_refsource_UBUNTU
26955 third-party-advisoryx_refsource_SECUNIA
oval:org.mitre.oval:def:10394 vdb-entrysignaturex_refsource_OVAL
x_refsource_CONFIRM
26935 third-party-advisoryx_refsource_SECUNIA
DSA-1378 vendor-advisoryx_refsource_DEBIAN

Open in Interactive Console →