CVE-2009-3547 — HIGH (7.0) — White Hats Nepal

Q: How severe is CVE-2009-3547?

CVE-2009-3547 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2009-3547?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Novell Linux Desktop, Opensuse Opensuse, Suse Suse Linux Enterprise Desktop, Suse Suse Linux Enterprise Server.

Vulnerability Description

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.

CVSS Score

7.0

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	<= 2.6.31.14
Novell	Linux Desktop	9
Opensuse	Opensuse	11.0
Suse	Suse Linux Enterprise Desktop	10
Suse	Suse Linux Enterprise Server	10
Canonical	Ubuntu Linux	6.06
Fedoraproject	Fedora	10
Vmware	Vma	4.0
Vmware	Esx	4.0
Redhat	Mrg Realtime	1.0
Redhat	Enterprise Linux Desktop	3.0
Redhat	Enterprise Linux Eus	4.8
Redhat	Enterprise Linux Server	3.0
Redhat	Enterprise Linux Workstation	3.0

Related Weaknesses (CWE)

CWE-362 CWE-672 CWE-476

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=Broken Link
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00005.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00007.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.htmlBroken LinkMailing ListThird Party Advisory
http://lists.vmware.com/pipermail/security-announce/2010/000082.htmlMailing ListThird Party Advisory
http://lkml.org/lkml/2009/10/14/184ExploitMailing List
http://lkml.org/lkml/2009/10/21/42Mailing ListPatch
http://marc.info/?l=oss-security&m=125724568017045&w=2Mailing ListThird Party Advisory
http://secunia.com/advisories/37351Broken Link
http://secunia.com/advisories/38017Broken Link
http://secunia.com/advisories/38794Broken Link
http://secunia.com/advisories/38834Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc6Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2009:329Broken Link

FAQ

What is CVE-2009-3547?

CVE-2009-3547 is a vulnerability with a CVSS score of 7.0 (HIGH). Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting ...

How severe is CVE-2009-3547?

CVE-2009-3547 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-3547?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Novell Linux Desktop, Opensuse Opensuse, Suse Suse Linux Enterprise Desktop, Suse Suse Linux Enterprise Server.