PT-2008-4381 · Linux+2 · Linux Kernel+3

Published

2008-06-30

Updated

2022-02-07

CVE-2008-2944

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6.18 Red Hat Enterprise Linux (RHEL) 5 Fedora Core 6 (FC6)

Description A double free vulnerability exists in the utrace support of the Linux kernel. This issue can be exploited by local users to cause a denial of service, resulting in a system crash. The vulnerability has been demonstrated by running the GNU GDB testsuite.

Recommendations For Linux kernel version 2.6.18, update to a version that includes the fix for this issue. For Red Hat Enterprise Linux (RHEL) 5, apply the appropriate patch or update to a version that includes the fix for this issue. For Fedora Core 6 (FC6), update to a version that includes the fix for this issue.

Exploit

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

CVE-2008-2944

Affected Products

Fedora Core

Gnu Gdb

Linux Kernel

Red Hat

PT-2008-4381 · Linux+2 · Linux Kernel+3

CVE-2008-2944

Weakness Enumeration

Related Identifiers

Affected Products

References · 5