| Vulnerability Name: | CVE-2007-5494 (CCN-38823) | ||||||||||||||||||||
| Assigned: | 2007-11-29 | ||||||||||||||||||||
| Published: | 2007-11-29 | ||||||||||||||||||||
| Updated: | 2017-09-29 | ||||||||||||||||||||
| Summary: | Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and 5 allows local users to cause a denial of service (memory consumption) via a large number of open requests involving O_ATOMICLOOKUP. | ||||||||||||||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||||||||||||||
| CVSS v2 Severity: | 4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C) 3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
| ||||||||||||||||||||
| Vulnerability Type: | CWE-399 | ||||||||||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2007-5494 Source: OSVDB Type: UNKNOWN 44153 Source: CCN Type: RHSA-2007-0993 Important: kernel security update Source: CCN Type: RHSA-2007-1104 Important: kernel security and bug fix update Source: SECUNIA Type: Vendor Advisory 27824 Source: SECUNIA Type: Vendor Advisory 28162 Source: CCN Type: SECTRACK ID: 1019017 Red Hat Content Accelerator Kernel Patch open(O_ATOMICLOOKUP) Function Lets Local Users Deny Service Source: CCN Type: ASA-2007-537 kernel security and bug fix update (RHSA-2007-1104) Source: CCN Type: OSVDB ID: 44153 Red Hat Linux Content Accelerator Patch for Linux Kernel O_ATOMICLOOKUP Request Saturation Local DoS Source: REDHAT Type: UNKNOWN RHSA-2007:0993 Source: REDHAT Type: UNKNOWN RHSA-2007:1104 Source: BID Type: UNKNOWN 26657 Source: CCN Type: BID-26657 Red Hat Content Accelerator Memory Leak Local Denial Of Service Vulnerability Source: SECTRACK Type: UNKNOWN 1019017 Source: CCN Type: Red Hat Bugzilla Bug 315051 CVE-2007-5494 open(O_ATOMICLOOKUP) leaks dentry Source: CONFIRM Type: UNKNOWN https://bugzilla.redhat.com/show_bug.cgi?id=315051 Source: XF Type: UNKNOWN rhel-content-accelerator-dos(38823) Source: XF Type: UNKNOWN rhel-content-accelerator-dos(38823) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:10884 | ||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5: Configuration RedHat 6: Configuration RedHat 7: Configuration RedHat 8: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
| BACK | |||||||||||||||||||||