CVE-2007-3731 — Vulnetix

Try Vulnetix Request Demo

CVE-2007-3731 PUBLISHED

Reported by redhat · Published September 17, 2007

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain code that makes ptrace PTRACE_SETREGS and PTRACE_SINGLESTEP requests, related to the TRACE_IRQS_ON function, and possibly related to the arch_ptrace function.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, n/a

Timeline

Sep 17, 2007 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

25801 vdb-entryx_refsource_BID
x_refsource_MISC
x_refsource_CONFIRM
37286 vdb-entryx_refsource_OSVDB
RHSA-2007:0940 vendor-advisoryx_refsource_REDHAT
29159 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
27322 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
26978 third-party-advisoryx_refsource_SECUNIA
20080229 rPSA-2008-0094-1 kernel mailing-listx_refsource_BUGTRAQ
x_refsource_CONFIRM
USN-518-1 vendor-advisoryx_refsource_UBUNTU
26955 third-party-advisoryx_refsource_SECUNIA
oval:org.mitre.oval:def:10394 vdb-entrysignaturex_refsource_OVAL
x_refsource_CONFIRM
26935 third-party-advisoryx_refsource_SECUNIA
DSA-1378 vendor-advisoryx_refsource_DEBIAN

Open in Interactive Console →