#VU94799 Improper input validation in Linux kernel - CVE-2007-4133

Cybersecurity Help s.r.o.

Published: 2007-10-05 | Updated: 2017-09-29

Vulnerability identifier: #VU94799

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2007-4133

CWE-ID: CWE-20

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain prio_tree calculations using HPAGE_SIZE instead of PAGE_SIZE units, which allows local users to cause a denial of service (panic) via unspecified vectors.

Mitigation
Install update from vendor's repository.

Vulnerable software versions

Linux kernel: All versions

External links
https://secunia.com/advisories/26994
https://secunia.com/advisories/27322
https://secunia.com/advisories/28170
https://secunia.com/advisories/28971
https://secunia.com/advisories/29058
https://tree.celinuxforum.org/gitstat/commit-detail.php?commit=856fc29505556cf263f3dcda2533cf3766c14ab6
https://www.debian.org/security/2007/dsa-1381
https://www.debian.org/security/2008/dsa-1504
https://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.19-rc4
https://www.mandriva.com/security/advisories?name=MDKSA-2007:216
https://www.mandriva.com/security/advisories?name=MDVSA-2008:008
https://www.mandriva.com/security/advisories?name=MDVSA-2008:105
https://www.redhat.com/support/errata/RHSA-2007-0940.html
https://www.securityfocus.com/bid/25904
https://www.ubuntu.com/usn/usn-558-1
https://www.ubuntu.com/usn/usn-578-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/36925
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10451

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Improper input validation in Linux kernel