CVE-2007-6417 — Vulnetix

CVE-2007-6417 PUBLISHED

Reported by mitre · Published December 18, 2007

The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly clear allocated memory in some rare circumstances related to tmpfs, which might allow local users to read sensitive kernel data or cause a denial of service (crash).

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, *, n/a

Timeline

Dec 18, 2007 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score

References

RHSA-2008:0885 vendor-advisoryx_refsource_REDHAT
[linux-kernel] 20071212 Re: [PATCH] tmpfs: restore missing clear_highpage mailing-listx_refsource_MLIST
[linux-kernel] 20071128 [PATCH] tmpfs: restore missing clear_highpage mailing-listx_refsource_MLIST
28806 third-party-advisoryx_refsource_SECUNIA
[linux-kernel] 20071215 Re: [PATCH] tmpfs: restore missing clear_highpage mailing-listx_refsource_MLIST
DSA-1436 vendor-advisoryx_refsource_DEBIAN
28141 third-party-advisoryx_refsource_SECUNIA
oval:org.mitre.oval:def:8920 vdb-entrysignaturex_refsource_OVAL
28706 third-party-advisoryx_refsource_SECUNIA
MDVSA-2008:112 vendor-advisoryx_refsource_MANDRIVA
27694 vdb-entryx_refsource_BID
MDVSA-2008:086 vendor-advisoryx_refsource_MANDRIVA
32023 third-party-advisoryx_refsource_SECUNIA
SUSE-SA:2008:006 vendor-advisoryx_refsource_SUSE
USN-574-1 vendor-advisoryx_refsource_UBUNTU
28971 third-party-advisoryx_refsource_SECUNIA
USN-578-1 vendor-advisoryx_refsource_UBUNTU
44120 vdb-entryx_refsource_OSVDB

Open in Interactive Console →