Oval Definition:oval:org.opensuse.security:def:20074571
Revision Date:2022-05-22Version:1
Title:CVE-2007-4571
Description:

The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information (kernel memory contents) via a small count argument, as demonstrated by multiple reads of /proc/driver/snd-page-alloc.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2007-4571
Mitre CVE-2007-4571
SUSE CVE-2007-4571
SUSE-SA:2007:053
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Open Enterprise Server
openSUSE 10.3
SUSE CORE 9 for AMD64 and Intel EM64T
SUSE LINUX 10.0
SUSE LINUX 10.1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
Product(s):
Definition Synopsis
  • Release Information
  • suse100 is installed
  • AND
  • Intel-536ep less than 4.69-0.3
  • OR kernel-bigsmp-nongpl less than 2.6.13-15.18
  • OR kernel-bigsmp less than 2.6.13-15.18
  • OR kernel-default-nongpl less than 2.6.13-15.18
  • OR kernel-default less than 2.6.13-15.18
  • OR kernel-iseries64 less than 2.6.13-15.18
  • OR kernel-ppc64 less than 2.6.13-15.18
  • OR kernel-smp-nongpl less than 2.6.13-15.18
  • OR kernel-smp less than 2.6.13-15.18
  • OR kernel-source less than 2.6.13-15.18
  • OR kernel-syms less than 2.6.13-15.18
  • OR kernel-um-nongpl less than 2.6.13-15.18
  • OR kernel-um less than 2.6.13-15.18
  • OR kernel-xen-nongpl less than 2.6.13-15.18
  • OR kernel-xen less than 2.6.13-15.18
  • OR um-host-kernel less than 2.6.13-15.18
  • OR Package Information
  • sles9-nld is installed
  • kernel-bigsmp less than 2.6.5-7.287.3
  • OR kernel-default less than 2.6.5-7.287.3
  • OR kernel-smp less than 2.6.5-7.287.3
  • OR kernel-source less than 2.6.5-7.287.3
  • OR kernel-syms less than 2.6.5-7.287.3
  • OR
  • sles9-oes is installed
  • kernel-bigsmp less than 2.6.5-7.287.3
  • OR kernel-debug less than 2.6.5-7.287.3
  • OR kernel-default less than 2.6.5-7.287.3
  • OR kernel-smp less than 2.6.5-7.287.3
  • OR kernel-source less than 2.6.5-7.287.3
  • OR kernel-syms less than 2.6.5-7.287.3
  • OR kernel-um less than 2.6.5-7.287.3
  • OR um-host-install-initrd less than 1.0-48.24.1
  • OR um-host-kernel less than 2.6.5-7.287.3
  • OR Package Information
  • suse101 is installed
  • AND
  • kernel-bigsmp less than 2.6.16.53-0.16
  • OR kernel-debug less than 2.6.16.53-0.16
  • OR kernel-default less than 2.6.16.53-0.16
  • OR kernel-iseries64 less than 2.6.16.53-0.16
  • OR kernel-kdump less than 2.6.16.53-0.16
  • OR kernel-ppc64 less than 2.6.16.53-0.16
  • OR kernel-smp less than 2.6.16.53-0.16
  • OR kernel-source less than 2.6.16.53-0.16
  • OR kernel-syms less than 2.6.16.53-0.16
  • OR kernel-um less than 2.6.16.53-0.16
  • OR kernel-xen less than 2.6.16.53-0.16
  • OR kernel-xenpae less than 2.6.16.53-0.16
  • OR kexec-tools less than 1.101-32.42
  • OR mkinitrd less than 1.2-106.59
  • OR multipath-tools less than 0.4.6-25.22
  • OR open-iscsi less than 2.0.707-0.27
  • OR udev less than 085-30.40
  • OR Package Information
  • sles9-nld is installed
  • AND
  • kernel-default less than 2.6.5-7.287.3
  • OR kernel-smp less than 2.6.5-7.287.3
  • OR kernel-source less than 2.6.5-7.287.3
  • OR kernel-syms less than 2.6.5-7.287.3
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-source is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • kernel-default is affected
  • OR kernel-source is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-source is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-source is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-source is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-source is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-source is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-source is not affected
    • BACK