Vulnerability Description
The ecryptfs_write_metadata_to_contents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.6.28 |
Related Weaknesses (CWE)
References
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%
- http://osvdb.org/52860
- http://rhn.redhat.com/errata/RHSA-2009-0473.html
- http://secunia.com/advisories/34422Vendor Advisory
- http://secunia.com/advisories/35015
- http://secunia.com/advisories/37471
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.9Vendor Advisory
- http://www.securityfocus.com/archive/1/507985/100/0/threaded
- http://www.securityfocus.com/bid/34216Patch
- http://www.securitytracker.com/id?1022177
- http://www.vmware.com/security/advisories/VMSA-2009-0016.html
- http://www.vupen.com/english/advisories/2009/0802Vendor Advisory
- http://www.vupen.com/english/advisories/2009/3316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49355
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2009-0787?
CVE-2009-0787 is a vulnerability with a CVSS score of 4.9 (MEDIUM). The ecryptfs_write_metadata_to_contents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, ...
How severe is CVE-2009-0787?
CVE-2009-0787 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0787?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.