CVE-2008-0600: Code Injection
First published: Sat Feb 09 2008(Updated: )
The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <0:2.6.18-53.1.13.el5 | 0:2.6.18-53.1.13.el5 |
| Linux Kernel | =2.6.20.6 | |
| Linux Kernel | =2.6.17-rc6 | |
| Linux Kernel | =2.6.20.9 | |
| Linux Kernel | =2.6.18-rc3 | |
| Linux Kernel | =2.6.23.4 | |
| Linux Kernel | =2.6.20-rc2 | |
| Linux Kernel | =2.6.18.7 | |
| Linux Kernel | =2.6.17.12 | |
| Linux Kernel | =2.6.21 | |
| Linux Kernel | =2.6.21-git3 | |
| Linux Kernel | =2.6.17.9 | |
| Linux Kernel | =2.6.19-rc4 | |
| Linux Kernel | =2.6.21-git5 | |
| Linux Kernel | =2.6.21-git4 | |
| Linux Kernel | =2.6.20.13 | |
| Linux Kernel | =2.6.21-rc5 | |
| Linux Kernel | =2.6.22.4 | |
| Linux Kernel | =2.6.18-rc2 | |
| Linux Kernel | =2.6.17.2 | |
| Linux Kernel | =2.6.18-rc5 | |
| Linux Kernel | =2.6.21-rc7 | |
| Linux Kernel | =2.6.21-rc4 | |
| Linux Kernel | =2.6.18-rc4 | |
| Linux Kernel | =2.6.23.7 | |
| Linux Kernel | =2.6.17.8 | |
| Linux Kernel | =2.6.17.4 | |
| Linux Kernel | =2.6.17.14 | |
| Linux Kernel | =2.6.24-rc3 | |
| Linux Kernel | =2.6.18.3 | |
| Linux Kernel | =2.6.22.1 | |
| Linux Kernel | =2.6.17.3 | |
| Linux Kernel | =2.6.24.1 | |
| Linux Kernel | =2.6.20.5 | |
| Linux Kernel | =2.6.22 | |
| Linux Kernel | =2.6.19.3 | |
| Linux Kernel | =2.6.19.1 | |
| Linux Kernel | =2.6.18.4 | |
| Linux Kernel | =2.6.18.1 | |
| Linux Kernel | =2.6.23.1 | |
| Linux Kernel | =2.6.17.5 | |
| Linux Kernel | =2.6.18.5 | |
| Linux Kernel | =2.6.21.1 | |
| Linux Kernel | =2.6.17 | |
| Linux Kernel | =2.6.24 | |
| Linux Kernel | =2.6.19.2 | |
| Linux Kernel | =2.6.21.4 | |
| Linux Kernel | =2.6.21-git2 | |
| Linux Kernel | =2.6.20.12 | |
| Linux Kernel | =2.6.17.10 | |
| Linux Kernel | =2.6.19-rc1 | |
| Linux Kernel | =2.6.20 | |
| Linux Kernel | =2.6.22.7 | |
| Linux Kernel | =2.6.17-rc3 | |
| Linux Kernel | =2.6.17.1 | |
| Linux Kernel | =2.6.20.8 | |
| Linux Kernel | =2.6.21-rc6 | |
| Linux Kernel | =2.6.20.15 | |
| Linux Kernel | =2.6.21-git7 | |
| Linux Kernel | =2.6.23-rc2 | |
| Linux Kernel | =2.6.17-rc1 | |
| Linux Kernel | =2.6.23.9 | |
| Linux Kernel | =2.6.17-rc2 | |
| Linux Kernel | =2.6.22.6 | |
| Linux Kernel | =2.6.23.3 | |
| Linux Kernel | =2.6.18.8 | |
| Linux Kernel | =2.6.22.3 | |
| Linux Kernel | =2.6.18.2 | |
| Linux Kernel | =2.6.23-rc1 | |
| Linux Kernel | =2.6.20.11 | |
| Linux Kernel | =2.6.19 | |
| Linux Kernel | =2.6.20.3 | |
| Linux Kernel | =2.6.21.3 | |
| Linux Kernel | =2.6.23.14 | |
| Linux Kernel | =2.6.17.11 | |
| Linux Kernel | =2.6.20.10 | |
| Linux Kernel | =2.6.23 | |
| Linux Kernel | =2.6.23.2 | |
| Linux Kernel | =2.6.21.2 | |
| Linux Kernel | =2.6.24-rc2 | |
| Linux Kernel | =2.6.21-git1 | |
| Linux Kernel | =2.6.20.2 | |
| Linux Kernel | =2.6.18-rc7 | |
| Linux Kernel | =2.6.17.7 | |
| Linux Kernel | =2.6.20.1 | |
| Linux Kernel | =2.6.18.6 | |
| Linux Kernel | =2.6.18-rc6 | |
| Linux Kernel | =2.6.23.5 | |
| Linux Kernel | =2.6.18 | |
| Linux Kernel | =2.6.19-rc2 | |
| Linux Kernel | =2.6.20.4 | |
| Linux Kernel | =2.6.17.6 | |
| Linux Kernel | =2.6.23.6 | |
| Linux Kernel | =2.6.17.13 | |
| Linux Kernel | =2.6.22-rc6 | |
| Linux Kernel | =2.6.19-rc3 | |
| Linux Kernel | =2.6.20.14 | |
| Linux Kernel | =2.6.17-rc4 | |
| Linux Kernel | =2.6.22.5 | |
| Linux Kernel | =2.6.21-rc3 | |
| Linux Kernel | =2.6.20.7 | |
| Linux Kernel | =2.6.22.16 | |
| Linux Kernel | =2.6.18-rc1 | |
| Linux Kernel | =2.6.21-git6 | |
| Linux Kernel | =2.6.17-rc5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://marc.info/?l=linux-kernel&m=120264773202422&w=2
- http://marc.info/?l=linux-kernel&m=120263652322197&w=2
- http://marc.info/?l=linux-kernel&m=120264520431307&w=2
- http://marc.info/?l=linux-kernel&m=120266328220808&w=2
- http://marc.info/?l=linux-kernel&m=120266353621139&w=2
- http://wiki.rpath.com/Advisories:rPSA-2008-0052
- http://www.debian.org/security/2008/dsa-1494
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00254.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00255.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:043
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:044
- http://www.redhat.com/support/errata/RHSA-2008-0129.html
- http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html
- http://www.ubuntu.com/usn/usn-577-1
- http://www.securityfocus.com/bid/27704
- http://secunia.com/advisories/28835
- http://secunia.com/advisories/28858
- http://secunia.com/advisories/28875
- http://secunia.com/advisories/28896
- http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0052
- https://bugzilla.redhat.com/show_bug.cgi?id=432229
- https://bugzilla.redhat.com/show_bug.cgi?id=432517
- https://issues.rpath.com/browse/RPL-2237
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00270.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00485.html
- http://securitytracker.com/id?1019393
- http://secunia.com/advisories/28889
- http://secunia.com/advisories/28912
- http://secunia.com/advisories/28925
- http://secunia.com/advisories/28933
- http://secunia.com/advisories/28937
- http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00002.html
- http://www.securityfocus.com/bid/27801
- http://secunia.com/advisories/29245
- http://secunia.com/advisories/30818
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html
- http://www.vupen.com/english/advisories/2008/0487/references
- https://www.exploit-db.com/exploits/5092
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11358
- http://www.securityfocus.com/archive/1/488009/100/0/threaded
- https://access.redhat.com/security/cve/CVE-2008-0009
- https://access.redhat.com/security/cve/CVE-2008-0010
- http://marc.info/?t=120263655300003&r=1&w=2
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8811930dc74a503415b35c4a79d14fb0b408a361
- http://www.milw0rm.com/exploits/5093
- https://access.redhat.com/security/cve/CVE-2008-0600
- http://www.milw0rm.com/exploits/5092
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=712a30e63c8066ed84385b12edbfb804f49cbc44
- http://home.powertech.no/oystein/ptpatch2008/
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=294535
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=294535&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c10
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c13
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432308
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432288
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432252
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432253
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c20
- http://erek.blumenthals.com/blog/2008/02/11/rhel-5-centos-5-kernel-rpms-patched-against-vmsplice-local-root-exploit/
- http://people.redhat.com/dzickus/el5/79.el5
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=431092
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c31
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c16
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c36
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432251#c35
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432229#c17
- https://rhn.redhat.com/errata/RHSA-2008-0129.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=432319
- https://bugzilla.redhat.com/show_bug.cgi?id=432251
- https://www.cve.org/CVERecord?id=CVE-2008-0600 https://nvd.nist.gov/vuln/detail/CVE-2008-0600
- https://access.redhat.com/errata/RHSA-2008:0129
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0600.json
Frequently Asked Questions
What is the severity of CVE-2008-0600?
The severity of CVE-2008-0600 is considered high due to the potential for local users to gain root privileges.
How do I fix CVE-2008-0600?
To fix CVE-2008-0600, upgrade the Linux kernel to version 2.6.24.2 or later.
Which versions of the Linux kernel are affected by CVE-2008-0600?
CVE-2008-0600 affects Linux kernel versions 2.6.17 through 2.6.24.1.
Is CVE-2008-0600 a local or remote vulnerability?
CVE-2008-0600 is a local vulnerability that can be exploited by users with local access.
What type of attack does CVE-2008-0600 enable?
CVE-2008-0600 enables local users to execute arbitrary code with elevated privileges, potentially leading to full system compromise.
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-0600
- collector/redhat-cve
- agent/software-canonical-lookup
- agent/author
- agent/references
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/2.6.20.6
- version/linux kernel/2.6.17-rc6
- version/linux kernel/2.6.20.9
- version/linux kernel/2.6.18-rc3
- version/linux kernel/2.6.23.4
- version/linux kernel/2.6.20-rc2
- version/linux kernel/2.6.18.7
- version/linux kernel/2.6.17.12
- version/linux kernel/2.6.21
- version/linux kernel/2.6.21-git3
- version/linux kernel/2.6.17.9
- version/linux kernel/2.6.19-rc4
- version/linux kernel/2.6.21-git5
- version/linux kernel/2.6.21-git4
- version/linux kernel/2.6.20.13
- version/linux kernel/2.6.21-rc5
- version/linux kernel/2.6.22.4
- version/linux kernel/2.6.18-rc2
- version/linux kernel/2.6.17.2
- version/linux kernel/2.6.18-rc5
- version/linux kernel/2.6.21-rc7
- version/linux kernel/2.6.21-rc4
- version/linux kernel/2.6.18-rc4
- version/linux kernel/2.6.23.7
- version/linux kernel/2.6.17.8
- version/linux kernel/2.6.17.4
- version/linux kernel/2.6.17.14
- version/linux kernel/2.6.24-rc3
- version/linux kernel/2.6.18.3
- version/linux kernel/2.6.22.1
- version/linux kernel/2.6.17.3
- version/linux kernel/2.6.24.1
- version/linux kernel/2.6.20.5
- version/linux kernel/2.6.22
- version/linux kernel/2.6.19.3
- version/linux kernel/2.6.19.1
- version/linux kernel/2.6.18.4
- version/linux kernel/2.6.18.1
- version/linux kernel/2.6.23.1
- version/linux kernel/2.6.17.5
- version/linux kernel/2.6.18.5
- version/linux kernel/2.6.21.1
- version/linux kernel/2.6.17
- version/linux kernel/2.6.24
- version/linux kernel/2.6.19.2
- version/linux kernel/2.6.21.4
- version/linux kernel/2.6.21-git2
- version/linux kernel/2.6.20.12
- version/linux kernel/2.6.17.10
- version/linux kernel/2.6.19-rc1
- version/linux kernel/2.6.20
- version/linux kernel/2.6.22.7
- version/linux kernel/2.6.17-rc3
- version/linux kernel/2.6.17.1
- version/linux kernel/2.6.20.8
- version/linux kernel/2.6.21-rc6
- version/linux kernel/2.6.20.15
- version/linux kernel/2.6.21-git7
- version/linux kernel/2.6.23-rc2
- version/linux kernel/2.6.17-rc1
- version/linux kernel/2.6.23.9
- version/linux kernel/2.6.17-rc2
- version/linux kernel/2.6.22.6
- version/linux kernel/2.6.23.3
- version/linux kernel/2.6.18.8
- version/linux kernel/2.6.22.3
- version/linux kernel/2.6.18.2
- version/linux kernel/2.6.23-rc1
- version/linux kernel/2.6.20.11
- version/linux kernel/2.6.19
- version/linux kernel/2.6.20.3
- version/linux kernel/2.6.21.3
- version/linux kernel/2.6.23.14
- version/linux kernel/2.6.17.11
- version/linux kernel/2.6.20.10
- version/linux kernel/2.6.23
- version/linux kernel/2.6.23.2
- version/linux kernel/2.6.21.2
- version/linux kernel/2.6.24-rc2
- version/linux kernel/2.6.21-git1
- version/linux kernel/2.6.20.2
- version/linux kernel/2.6.18-rc7
- version/linux kernel/2.6.17.7
- version/linux kernel/2.6.20.1
- version/linux kernel/2.6.18.6
- version/linux kernel/2.6.18-rc6
- version/linux kernel/2.6.23.5
- version/linux kernel/2.6.18
- version/linux kernel/2.6.19-rc2
- version/linux kernel/2.6.20.4
- version/linux kernel/2.6.17.6
- version/linux kernel/2.6.23.6
- version/linux kernel/2.6.17.13
- version/linux kernel/2.6.22-rc6
- version/linux kernel/2.6.19-rc3
- version/linux kernel/2.6.20.14
- version/linux kernel/2.6.17-rc4
- version/linux kernel/2.6.22.5
- version/linux kernel/2.6.21-rc3
- version/linux kernel/2.6.20.7
- version/linux kernel/2.6.22.16
- version/linux kernel/2.6.18-rc1
- version/linux kernel/2.6.21-git6
- version/linux kernel/2.6.17-rc5