PT-2008-1445 · Linux+1 · Linux Kernel+1

Published

2008-01-31

Updated

2017-09-29

CVE-2007-4130

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64)

Description The issue is related to the handling of page faults during NUMA memory access. Local users can cause a denial of service (panic) by providing invalid arguments to set mempolicy in an MPOL BIND operation.

Recommendations For Linux kernel version 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64), update to version 2.6.9-67 or later to resolve the issue.

Exploit

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2007-4130

RHSA-2008:0055

RHSA-2008_0055

Affected Products

Linux Kernel

Red Hat

PT-2008-1445 · Linux+1 · Linux Kernel+1

CVE-2007-4130

Weakness Enumeration

Related Identifiers

Affected Products

References · 461