// For flags

CVE-2009-0859

Debian Linux Security Advisory 1787-1

Severity Score

5.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel before 2.6.28.5, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system hang) via an SHM_INFO shmctl call, as demonstrated by running the ipcs program.

La función shm_get_stat en ipc/shm.c del subsistema shm en el Kernell de Linux anteriores a v2.6.28.5, cuando CONFIG_SHMEM está desactivado, interpreta de forma errónea el tipo de datos en un inode, lo que permite a usuarios locales provocar una denegación de servicios (cuelgue del sistema) a través de una llamada shmctl SHM_INFO, como se ha demostrado ejecutando el programa ipcs.

A large amount of vulnerabilities in the Linux 2.6 kernel have been addressed. These include findings in NFS, the SCTP stack, the ext4 filesystem, and more.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Local
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2009-03-09 CVE Reserved
  • 2009-03-09 CVE Published
  • 2024-08-07 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (22)
URL Tag Source
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a68e61e8ff2d46327a37b69056998b47745db6fa X_refsource_confirm
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.5 X_refsource_confirm
http://marc.info/?l=git-commits-head&m=123387479500599&w=2 Mailing List
http://marc.info/?l=linux-kernel&m=120428209704324&w=2 Mailing List
http://marc.info/?l=linux-kernel&m=123309645625549&w=2 Mailing List
http://openwall.com/lists/oss-security/2009/03/06/1 Mailing List
http://patchwork.kernel.org/patch/6554 X_refsource_confirm
http://secunia.com/advisories/34981 Third Party Advisory
http://secunia.com/advisories/35011 Third Party Advisory
http://secunia.com/advisories/35121 Third Party Advisory
http://secunia.com/advisories/35185 Third Party Advisory
http://secunia.com/advisories/35390 Third Party Advisory
http://secunia.com/advisories/35394 Third Party Advisory
http://www.securityfocus.com/bid/34020 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/49229 Vdb Entry
URL Date SRC
URL Date SRC
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00002.html 2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.html 2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.html 2023-11-07
http://www.debian.org/security/2009/dsa-1787 2023-11-07
http://www.debian.org/security/2009/dsa-1794 2023-11-07
http://www.debian.org/security/2009/dsa-1800 2023-11-07
http://www.ubuntu.com/usn/usn-751-1 2023-11-07
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linux
Search vendor "Linux"
 Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
 <= 2.6.28.4
Search vendor "Linux" for product "Linux Kernel" and version " <= 2.6.28.4"
-
Affected