CVE-2008-3275
First published: Tue Aug 05 2008(Updated: )
Description of problem: Zoltan Sogor noticed this VFS behaviour while testing UBIFS. Lookup can install a child dentry for a deleted directory. This keeps the directory dentry alive, and the inode pinned in the cache and on disk, even after all external references have gone away. This isn't a big problem normally, since memory pressure or umount will clear out the directory dentry and its children, releasing the inode. But for UBIFS this causes problems because its orphan area can overflow. <a href="http://lkml.org/lkml/2008/7/2/83">http://lkml.org/lkml/2008/7/2/83</a> <a href="http://www.linux-mtd.infradead.org/doc/ubifs.html">http://www.linux-mtd.infradead.org/doc/ubifs.html</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux kernel | <2.6.25.15 | |
| Debian | =4.0 | |
| Ubuntu Linux | =6.06 | |
| Ubuntu Linux | =7.04 | |
| Ubuntu Linux | =7.10 | |
| Ubuntu Linux | =8.04 | |
| SUSE Linux Enterprise Desktop | =10-sp1 | |
| SUSE Linux Enterprise Server | =10-sp1 | |
| Linux Kernel | <2.6.25.15 | |
| Ubuntu | =6.06 | |
| Ubuntu | =7.04 | |
| Ubuntu | =7.10 | |
| Ubuntu | =8.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lkml.org/lkml/2008/7/2/83
- http://www.linux-mtd.infradead.org/doc/ubifs.html
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=d70b67c8bc72ee23b55381bd6a884f4796692f77
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=313417&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=313417&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=313514&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=313514&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=313515&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=313515&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=457812
- https://bugzilla.redhat.com/show_bug.cgi?id=457858
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.15
- http://www.securityfocus.com/bid/30647
- http://secunia.com/advisories/31614
- http://www.securitytracker.com/id?1020739
- http://secunia.com/advisories/31881
- http://www.debian.org/security/2008/dsa-1636
- http://secunia.com/advisories/32023
- http://www.redhat.com/support/errata/RHSA-2008-0885.html
- http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00001.html
- http://secunia.com/advisories/32190
- http://www.redhat.com/support/errata/RHSA-2008-0857.html
- http://secunia.com/advisories/31836
- http://www.debian.org/security/2008/dsa-1630
- http://secunia.com/advisories/31551
- http://www.redhat.com/support/errata/RHSA-2008-0973.html
- http://secunia.com/advisories/33201
- http://secunia.com/advisories/33556
- http://www.redhat.com/support/errata/RHSA-2009-0014.html
- http://secunia.com/advisories/32104
- http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00003.html
- http://secunia.com/advisories/33280
- http://www.redhat.com/support/errata/RHSA-2008-0787.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:220
- http://www.vupen.com/english/advisories/2008/2430
- http://secunia.com/advisories/32344
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44410
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6551
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10744
- https://usn.ubuntu.com/637-1/
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d70b67c8bc72ee23b55381bd6a884f4796692f77
Frequently Asked Questions
What is the severity of CVE-2008-3275?
CVE-2008-3275 has a medium severity rating, as it involves the improper handling of deleted directory entries which can impact system stability.
How do I fix CVE-2008-3275?
To fix CVE-2008-3275, update the Linux kernel to versions later than 2.6.25.15 that address this vulnerability.
What are the affected operating systems for CVE-2008-3275?
Affected operating systems for CVE-2008-3275 include certain versions of the Linux kernel, Debian 4.0, and specific Ubuntu and SUSE Linux versions.
What is the impact of CVE-2008-3275?
CVE-2008-3275 can cause issues with system resource management, particularly by keeping deleted directory inodes alive in cache.
Who discovered CVE-2008-3275?
CVE-2008-3275 was discovered by Zoltan Sogor during testing of the UBIFS filesystem.
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-3275
- agent/trending
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/linux
- canonical/linux kernel
- vendor/debian
- canonical/debian
- version/debian/4.0
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/6.06
- version/ubuntu linux/7.04
- version/ubuntu linux/7.10
- version/ubuntu linux/8.04
- vendor/suse
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/10-sp1
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp1
- canonical/ubuntu
- version/ubuntu/6.06
- version/ubuntu/7.04
- version/ubuntu/7.10
- version/ubuntu/8.04