CVE-2007-6206: Infoleak
First published: Tue Dec 04 2007(Updated: )
The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | =2.6.24-rc3 | |
| Linux Linux kernel | =2.6.24-rc1 | |
| Linux Linux kernel | =2.6.24-rc2 | |
| Linux Linux kernel | =2.6.24 | |
| Linux Linux kernel | >=2.6.0<2.6.24 | |
| Linux Linux kernel | >=2.4.0<=2.4.35.2 | |
| openSUSE openSUSE | =10.2 | |
| openSUSE openSUSE | =10.3 | |
| SUSE Linux Enterprise Software Development Kit | =10-sp1 | |
| SUSE Linux Enterprise Server | =10-sp1 | |
| Suse Linux Enterprise Real Time Extension | =10-sp1 | |
| SUSE Linux Enterprise Desktop | =10-sp1 | |
| Redhat Enterprise Linux Desktop | =4.0 | |
| Redhat Enterprise Linux Server | =4.0 | |
| Redhat Enterprise Linux Workstation | =4.0 | |
| Redhat Enterprise Linux Eus | =4.6 | |
| Debian Debian Linux | =3.1 | |
| Debian Debian Linux | =4.0 | |
| Canonical Ubuntu Linux | =7.04 | |
| Canonical Ubuntu Linux | =7.10 | |
| Canonical Ubuntu Linux | =6.10 | |
| Canonical Ubuntu Linux | =6.06 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://bugzilla.kernel.org/show_bug.cgi?id=3043
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=c46f739dd39db3b07ab5deb4e3ec81e1c04a91af
- http://www.securityfocus.com/bid/26701
- http://secunia.com/advisories/27908
- http://www.debian.org/security/2007/dsa-1436
- http://secunia.com/advisories/28141
- http://www.redhat.com/support/errata/RHSA-2008-0089.html
- http://rhn.redhat.com/errata/RHSA-2008-0055.html
- http://www.ubuntu.com/usn/usn-574-1
- http://secunia.com/advisories/28748
- http://secunia.com/advisories/28706
- http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:044
- http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html
- http://secunia.com/advisories/28826
- http://secunia.com/advisories/28889
- http://www.debian.org/security/2008/dsa-1503
- http://www.debian.org/security/2008/dsa-1504
- http://www.ubuntu.com/usn/usn-578-1
- http://secunia.com/advisories/28971
- http://secunia.com/advisories/29058
- http://secunia.com/advisories/28643
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:086
- http://www.redhat.com/support/errata/RHSA-2008-0211.html
- http://lists.vmware.com/pipermail/security-announce/2008/000023.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:112
- http://secunia.com/advisories/31246
- http://secunia.com/advisories/30962
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html
- http://secunia.com/advisories/30818
- http://secunia.com/advisories/30110
- http://secunia.com/advisories/33280
- http://www.redhat.com/support/errata/RHSA-2008-0787.html
- http://www.vupen.com/english/advisories/2007/4090
- http://www.vupen.com/english/advisories/2008/2222/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38841
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10719
- http://www.securityfocus.com/archive/1/487808/100/0/threaded
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=c46f739dd39db3b07ab5deb4e3ec81e1c04a91af
- agent/references
- agent/author
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/remedy
- agent/weakness
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-api
- collector/nvd-index
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/2.6.24-rc3
- version/linux linux kernel/2.6.24-rc1
- version/linux linux kernel/2.6.24-rc2
- version/linux linux kernel/2.6.24
- version/linux linux kernel/2.6.0
- version/linux linux kernel/2.4.0
- version/linux linux kernel/2.4.35.2
- vendor/opensuse
- canonical/opensuse opensuse
- version/opensuse opensuse/10.2
- version/opensuse opensuse/10.3
- vendor/suse
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/10-sp1
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp1
- canonical/suse linux enterprise real time extension
- version/suse linux enterprise real time extension/10-sp1
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/10-sp1
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/4.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/4.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/4.0
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/4.6
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/3.1
- version/debian debian linux/4.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/7.04
- version/canonical ubuntu linux/7.10
- version/canonical ubuntu linux/6.10
- version/canonical ubuntu linux/6.06