CVSS: 7.8EPSS: 0%CPEs: 317EXPL: 0CVE-2007-6694 – /proc/cpuinfo DoS on some ppc machines
https://notcve.org/view.php?id=CVE-2007-6694
The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property function to fail, which triggers a NULL pointer dereference. La función chrp_show_cpuinfo (chrp/setup.c) en Linux kernel 2.4.21 hasta 2.6.18-53, cuando funciona sobre PowerPC, podría permitir a usuarios locales provocar denegación de servicio (caida) a través de vectores desconocidos que hacen que la función of_get_property falle, lo cual dispara un puntero de referencia NULL. • http://marc.info/?l=linux-kernel&m=119576191029571&w=2 http://rhn.redhat.com/errata/RHSA-2008-0055.html http://secunia.com/advisories/28696 http://secunia.com/advisories/28748 http://secunia.com/advisories/29058 http://secunia.com/advisories/29236 http://secunia.com/advisories/30018 http://secunia.com/advisories/30515 http://secunia.com/advisories/30769 http://www.debian.org/security/2008/dsa-1503 http://www.debian.org/security/2008/dsa-1504 http://www.debian&# • CWE-399: Resource Management Errors •
CVSS: 1.9EPSS: 0%CPEs: 2EXPL: 0CVE-2007-3850 – kernel LTC31426-4k page mapping support for userspace in 64k kernels
https://notcve.org/view.php?id=CVE-2007-3850
The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space. El controlador eHCA en el kernel de Linux 2.6 anterior a 2.6.22, cuando funciona sobre PowerPC, no mapea de forma adecuada el espacio de usuario, lo cual permite a usuarios locales leer porciones de espacio de direcciones físicas. • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=721151d004dcf01a71b12bb6b893f9160284cf6e http://osvdb.org/45488 http://rhn.redhat.com/errata/RHSA-2007-0940.html http://secunia.com/advisories/27322 http://www.securityfocus.com/bid/26161 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10793 https://access.redhat.com/security/cve/CVE-2007-3850 https://bugzilla.redhat.com/show_bug.cgi?id=308811 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.7EPSS: 0%CPEs: 3EXPL: 0CVE-2007-3739 – LTC36188-Don't allow the stack to grow into hugetlb reserved regions
https://notcve.org/view.php?id=CVE-2007-3739
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified vectors. mm/mmap.c en el núcleo hugetlb, cuando se ejecuta en un sistema PowerP, no evita que la expansión de la pila entre en una página de memoria reservada por el núcleo, lo cual permite a usuarios locales provocar una denegación de servicio (OOPS) mediante vectores no especificados. • http://lkml.org/lkml/2007/1/29/180 http://secunia.com/advisories/23955 http://secunia.com/advisories/26760 http://secunia.com/advisories/26955 http://secunia.com/advisories/26978 http://secunia.com/advisories/27436 http://secunia.com/advisories/27747 http://secunia.com/advisories/27913 http://secunia.com/advisories/29058 http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm http://www.debian.org/security/2007/dsa-1378 http://www.debian.org/security/2008&#x • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-399: Resource Management Errors •