Vulnerability Description
The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Aix | 5.2 |
References
- http://securitytracker.com/id?1019606
- http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
- http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
- http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
- http://www.securityfocus.com/bid/28467Patch
- http://www.vupen.com/english/advisories/2008/0865
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://securitytracker.com/id?1019606
- http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
- http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
- http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
- http://www.securityfocus.com/bid/28467Patch
FAQ
What is CVE-2008-1594?
CVE-2008-1594 is a vulnerability with a CVSS score of 4.9 (MEDIUM). The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of...
How severe is CVE-2008-1594?
CVE-2008-1594 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1594?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Aix.