CVE-2007-3739

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-3739
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified vectors.

4.7 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 3.4 / Impact : 6.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://lkml.org/lkml/2007/1/29/180
http://secunia.com/advisories/23955
http://secunia.com/advisories/26760 Vendor Advisory
http://secunia.com/advisories/26955
http://secunia.com/advisories/26978
http://secunia.com/advisories/27436
http://secunia.com/advisories/27747
http://secunia.com/advisories/27913
http://secunia.com/advisories/29058
http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm
http://www.debian.org/security/2007/dsa-1378
http://www.debian.org/security/2008/dsa-1504
http://www.redhat.com/support/errata/RHSA-2007-0705.html
http://www.redhat.com/support/errata/RHSA-2007-0939.html
http://www.redhat.com/support/errata/RHSA-2007-1049.html
http://www.ubuntu.com/usn/usn-518-1
https://bugzilla.redhat.com/show_bug.cgi?id=253313
https://exchange.xforce.ibmcloud.com/vulnerabilities/36592
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11455
http://lkml.org/lkml/2007/1/29/180
http://secunia.com/advisories/23955
http://secunia.com/advisories/26760 Vendor Advisory
http://secunia.com/advisories/26955
http://secunia.com/advisories/26978
http://secunia.com/advisories/27436
http://secunia.com/advisories/27747
http://secunia.com/advisories/27913
http://secunia.com/advisories/29058
http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm
http://www.debian.org/security/2007/dsa-1378
http://www.debian.org/security/2008/dsa-1504
http://www.redhat.com/support/errata/RHSA-2007-0705.html
http://www.redhat.com/support/errata/RHSA-2007-0939.html
http://www.redhat.com/support/errata/RHSA-2007-1049.html
http://www.ubuntu.com/usn/usn-518-1
https://bugzilla.redhat.com/show_bug.cgi?id=253313
https://exchange.xforce.ibmcloud.com/vulnerabilities/36592
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11455
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:redhat:enterprise_linux:5.0:*:client:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*:server:*:*:*:*:*
cpe:2.3:h:apple:powerpc:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2007-09-14 01:17

Updated : 2025-04-09 00:30

NVD link : CVE-2007-3739

Mitre link : CVE-2007-3739

CVE.ORG link : CVE-2007-3739

JSON object : View

Products Affected

redhat

  • enterprise_linux

apple

  • powerpc
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-399

Resource Management Errors