| Vulnerability Name: | CVE-2009-0787 (CCN-49355) | ||||||||||||||||||||||||
| Assigned: | 2009-03-23 | ||||||||||||||||||||||||
| Published: | 2009-03-23 | ||||||||||||||||||||||||
| Updated: | 2023-02-13 | ||||||||||||||||||||||||
| Summary: | The ecryptfs_write_metadata_to_contents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory. | ||||||||||||||||||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||||||||||||||||||
| CVSS v2 Severity: | 4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N) 3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
1.4 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
| ||||||||||||||||||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2009-0787 Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: Linux Kernel GIT Repository eCryptfs: Allocate a variable number of pages for file headers Source: CCN Type: RHSA-2009-0473 Important: kernel security and bug fix update Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: SA34422 Linux Kernel Information Disclosure and Security Bypass Source: CCN Type: SA36317 Avaya Products Linux Kernel Multiple Vulnerabilities Source: CCN Type: SECTRACK ID: 1022177 Linux Kernel Bug in ecryptfs_write_metadata_to_contents() Lets Local Users Obtain Portions of Kernel Memory Source: CCN Type: ASA-2009-167 kernel security and bug fix update (RHSA-2009-0473) Source: CCN Type: ASA-2009-277 kernel security and bug fix update (RHSA-2009-1132) Source: secalert@redhat.com Type: Vendor Advisory secalert@redhat.com Source: CCN Type: OSVDB ID: 52860 Linux Kernel eCryptfs ecryptfs_write_metadata_to_contents Function Arbitrary Kernel Memory Disclosure Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: BID-34216 Linux Kernel 'ecryptfs_write_metadata_to_contents()' Information Disclosure Vulnerability Source: secalert@redhat.com Type: Patch secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: Vendor Advisory secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: XF Type: UNKNOWN linux-kernel-ecryptfs-information-disclosure(49355) Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com | ||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration RedHat 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||
| |||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||