VDB
CVE-2009-0029
CVE-2009-0029
PUBLISHED
CVSS 7.199999809265137 HIGH
The ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, sparc64, and mips 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users to cause a denial of service (crash) or possibly gain privileges via a crafted system call.
EPSS 0.04% · 13.7th percentile
Risk Scores
CVSS 2.0
7.199999809265137
EPSS Score
0.04%
13.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| debian | debian_linux | 4.0, 5.0 |
| linux | linux_kernel | 0 |
| n/a | n/a | n/a |
Exploit Intelligence
- MDVSA-2009:135 (circl)
- 33477 (circl)
- SUSE-SA:2009:010 (circl)
- 33275 (circl)
- DSA-1749 (circl)
- DSA-1794 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=479969 (circl)
- 33674 (circl)
- 35011 (circl)
- 34981 (circl)
…and 4 more exploits
Timeline
- Jan 15, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- MDVSA-2009:135 vendor-advisory
- 33477 third-party-advisory
- SUSE-SA:2009:010 vendor-advisory
- 33275 vdb
- DSA-1749 vendor-advisory
- DSA-1794 vendor-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=479969 url
- 33674 third-party-advisory
- 35011 third-party-advisory
- 34981 third-party-advisory
- 34394 third-party-advisory
- DSA-1787 vendor-advisory
- FEDORA-2009-0816 vendor-advisory
- [linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2009-0029 advisory
- https://access.redhat.com/security/cve/CVE-2009-0029 url