Vulnerability Description
A certain Fedora patch for the utrace subsystem in the Linux kernel before 2.6.26.5-28 on Fedora 8, and before 2.6.26.5-45 on Fedora 9, allows local users to cause a denial of service (NULL pointer dereference and system crash or hang) via a call to the utrace_control function.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Fedora | 8 |
| Linux | Linux Kernel | <= 2.6.26.4 |
Related Weaknesses (CWE)
References
- http://kerneloops.org/oops.php?number=56705
- http://www.openwall.com/lists/oss-security/2008/10/02/1Exploit
- http://www.securityfocus.com/bid/31536
- https://bugzilla.redhat.com/show_bug.cgi?id=464883
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45644
- http://kerneloops.org/oops.php?number=56705
- http://www.openwall.com/lists/oss-security/2008/10/02/1Exploit
- http://www.securityfocus.com/bid/31536
- https://bugzilla.redhat.com/show_bug.cgi?id=464883
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45644
FAQ
What is CVE-2008-3832?
CVE-2008-3832 is a vulnerability with a CVSS score of 4.9 (MEDIUM). A certain Fedora patch for the utrace subsystem in the Linux kernel before 2.6.26.5-28 on Fedora 8, and before 2.6.26.5-45 on Fedora 9, allows local users to cause a denial of service (NULL pointer de...
How severe is CVE-2008-3832?
CVE-2008-3832 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3832?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Fedora, Linux Linux Kernel.