// For flags

CVE-2007-4571

Linux Kernel 2.6.x - ALSA snd-page-alloc Local Proc File Information Disclosure

Severity Score

2.1
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information (kernel memory contents) via a small count argument, as demonstrated by multiple reads of /proc/driver/snd-page-alloc.

La función snd_mem_proc_read en sound/core/memalloc.c de Advanced Linux Sound Architecture (ALSA) en el núcleo de Linux anterior a 2.6.22.8 no devuelve el tamaño de escritura correcto, lo cual permite a usuarios locales obtener información sensible (contenidos de la memoria del núcleo) mediante un argumento de cuenta pequeño, como ha sido demostrado mediante múltiples lecturas de /proc/driver/snd-page-alloc.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-08-28 CVE Reserved
  • 2007-09-21 First Exploit
  • 2007-09-26 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
References (32)
URL Tag Source
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ccec6e2c4a74adf76ed4e2478091a311b1806212 X_refsource_confirm
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.8 X_refsource_confirm
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=600 Third Party Advisory
http://secunia.com/advisories/26918 Third Party Advisory
http://secunia.com/advisories/26980 Third Party Advisory
http://secunia.com/advisories/26989 Third Party Advisory
http://secunia.com/advisories/27101 Third Party Advisory
http://secunia.com/advisories/27227 Third Party Advisory
http://secunia.com/advisories/27436 Third Party Advisory
http://secunia.com/advisories/27747 Third Party Advisory
http://secunia.com/advisories/27824 Third Party Advisory
http://secunia.com/advisories/28626 Third Party Advisory
http://secunia.com/advisories/29054 Third Party Advisory
http://secunia.com/advisories/30769 Third Party Advisory
http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm X_refsource_confirm
http://www.securityfocus.com/bid/25807 Vdb Entry
http://www.securitytracker.com/id?1018734 Vdb Entry
http://www.vupen.com/english/advisories/2007/3272 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/36780 Vdb Entry
https://issues.rpath.com/browse/RPL-1761 X_refsource_confirm
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9053 Signature
URL Date SRC
https://www.exploit-db.com/exploits/30605 2007-09-21
URL Date SRC
URL Date SRC
http://www.debian.org/security/2008/dsa-1479 2023-02-13
http://www.debian.org/security/2008/dsa-1505 2023-02-13
http://www.novell.com/linux/security/advisories/2007_53_kernel.html 2023-02-13
http://www.redhat.com/support/errata/RHSA-2007-0939.html 2023-02-13
http://www.redhat.com/support/errata/RHSA-2007-0993.html 2023-02-13
http://www.ubuntu.com/usn/usn-618-1 2023-02-13
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00083.html 2023-02-13
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00436.html 2023-02-13
https://access.redhat.com/security/cve/CVE-2007-4571 2007-11-29
https://bugzilla.redhat.com/show_bug.cgi?id=288961 2007-11-29
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linux
Search vendor "Linux"
 Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
 <= 2.6.22.7
Search vendor "Linux" for product "Linux Kernel" and version " <= 2.6.22.7"
-
Affected