CVE-2008-0600

Published: Feb 12, 2008Modified: Apr 23, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010.

Affected (104)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

104 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Version 2.6.17.10
Linux Linux Kernel	Version 2.6.17.11
Linux Linux Kernel	Version 2.6.17.12
Linux Linux Kernel	Version 2.6.17.13
Linux Linux Kernel	Version 2.6.17.14
Linux Linux Kernel	Version 2.6.17.1
Linux Linux Kernel	Version 2.6.17.2
Linux Linux Kernel	Version 2.6.17.3
Linux Linux Kernel	Version 2.6.17.4
Linux Linux Kernel	Version 2.6.17.5
Linux Linux Kernel	Version 2.6.17.6
Linux Linux Kernel	Version 2.6.17.7
Linux Linux Kernel	Version 2.6.17.8
Linux Linux Kernel	Version 2.6.17.9
Linux Linux Kernel	Version 2.6.17
Linux Linux Kernel	Version 2.6.17 rc1
Linux Linux Kernel	Version 2.6.17 rc2
Linux Linux Kernel	Version 2.6.17 rc3
Linux Linux Kernel	Version 2.6.17 rc4
Linux Linux Kernel	Version 2.6.17 rc5
Linux Linux Kernel	Version 2.6.17 rc6
Linux Linux Kernel	Version 2.6.18.1
Linux Linux Kernel	Version 2.6.18.2
Linux Linux Kernel	Version 2.6.18.3
Linux Linux Kernel	Version 2.6.18.4
Linux Linux Kernel	Version 2.6.18.5
Linux Linux Kernel	Version 2.6.18.6
Linux Linux Kernel	Version 2.6.18.7
Linux Linux Kernel	Version 2.6.18.8
Linux Linux Kernel	Version 2.6.18
Linux Linux Kernel	Version 2.6.18 rc1
Linux Linux Kernel	Version 2.6.18 rc2
Linux Linux Kernel	Version 2.6.18 rc3
Linux Linux Kernel	Version 2.6.18 rc4
Linux Linux Kernel	Version 2.6.18 rc5
Linux Linux Kernel	Version 2.6.18 rc6
Linux Linux Kernel	Version 2.6.18 rc7
Linux Linux Kernel	Version 2.6.19.1
Linux Linux Kernel	Version 2.6.19.2
Linux Linux Kernel	Version 2.6.19.3
Linux Linux Kernel	Version 2.6.19
Linux Linux Kernel	Version 2.6.19 rc1
Linux Linux Kernel	Version 2.6.19 rc2
Linux Linux Kernel	Version 2.6.19 rc3
Linux Linux Kernel	Version 2.6.19 rc4
Linux Linux Kernel	Version 2.6.20.10
Linux Linux Kernel	Version 2.6.20.11
Linux Linux Kernel	Version 2.6.20.12
Linux Linux Kernel	Version 2.6.20.13
Linux Linux Kernel	Version 2.6.20.14
Linux Linux Kernel	Version 2.6.20.15
Linux Linux Kernel	Version 2.6.20.1
Linux Linux Kernel	Version 2.6.20.2
Linux Linux Kernel	Version 2.6.20.3
Linux Linux Kernel	Version 2.6.20.4
Linux Linux Kernel	Version 2.6.20.5
Linux Linux Kernel	Version 2.6.20.6
Linux Linux Kernel	Version 2.6.20.7
Linux Linux Kernel	Version 2.6.20.8
Linux Linux Kernel	Version 2.6.20.9
Linux Linux Kernel	Version 2.6.20
Linux Linux Kernel	Version 2.6.20 rc2
Linux Linux Kernel	Version 2.6.21.1
Linux Linux Kernel	Version 2.6.21.2
Linux Linux Kernel	Version 2.6.21.3
Linux Linux Kernel	Version 2.6.21.4
Linux Linux Kernel	Version 2.6.21
Linux Linux Kernel	Version 2.6.21 git1
Linux Linux Kernel	Version 2.6.21 git2
Linux Linux Kernel	Version 2.6.21 git3
Linux Linux Kernel	Version 2.6.21 git4
Linux Linux Kernel	Version 2.6.21 git5
Linux Linux Kernel	Version 2.6.21 git6
Linux Linux Kernel	Version 2.6.21 git7
Linux Linux Kernel	Version 2.6.21 rc3
Linux Linux Kernel	Version 2.6.21 rc4
Linux Linux Kernel	Version 2.6.21 rc5
Linux Linux Kernel	Version 2.6.21 rc6
Linux Linux Kernel	Version 2.6.21 rc7
Linux Linux Kernel	Version 2.6.22.16
Linux Linux Kernel	Version 2.6.22.1
Linux Linux Kernel	Version 2.6.22.3
Linux Linux Kernel	Version 2.6.22.4
Linux Linux Kernel	Version 2.6.22.5
Linux Linux Kernel	Version 2.6.22.6
Linux Linux Kernel	Version 2.6.22.7
Linux Linux Kernel	Version 2.6.22
Linux Linux Kernel	Version 2.6.22 rc6
Linux Linux Kernel	Version 2.6.23.14
Linux Linux Kernel	Version 2.6.23.1
Linux Linux Kernel	Version 2.6.23.2
Linux Linux Kernel	Version 2.6.23.3
Linux Linux Kernel	Version 2.6.23.4
Linux Linux Kernel	Version 2.6.23.5
Linux Linux Kernel	Version 2.6.23.6
Linux Linux Kernel	Version 2.6.23.7
Linux Linux Kernel	Version 2.6.23.9
Linux Linux Kernel	Version 2.6.23
Linux Linux Kernel	Version 2.6.23 rc1
Linux Linux Kernel	Version 2.6.23 rc2
Linux Linux Kernel	Version 2.6.24.1
Linux Linux Kernel	Version 2.6.24
Linux Linux Kernel	Version 2.6.24 rc2
Linux Linux Kernel	Version 2.6.24 rc3

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (80)

http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00002.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html

Source: secalert@redhat.com

http://marc.info/?l=linux-kernel&m=120263652322197&w=2

Source: secalert@redhat.com

Exploit

http://marc.info/?l=linux-kernel&m=120264520431307&w=2

Source: secalert@redhat.com

Exploit

http://marc.info/?l=linux-kernel&m=120264773202422&w=2

Source: secalert@redhat.com

Exploit

http://marc.info/?l=linux-kernel&m=120266328220808&w=2

Source: secalert@redhat.com

Exploit

http://marc.info/?l=linux-kernel&m=120266353621139&w=2

Source: secalert@redhat.com

Exploit

http://secunia.com/advisories/28835

Source: secalert@redhat.com

http://secunia.com/advisories/28858

Source: secalert@redhat.com

http://secunia.com/advisories/28875

Source: secalert@redhat.com

http://secunia.com/advisories/28889

Source: secalert@redhat.com

http://secunia.com/advisories/28896

Source: secalert@redhat.com

http://secunia.com/advisories/28912

Source: secalert@redhat.com

http://secunia.com/advisories/28925

Source: secalert@redhat.com

http://secunia.com/advisories/28933

Source: secalert@redhat.com

http://secunia.com/advisories/28937

Source: secalert@redhat.com

http://secunia.com/advisories/29245

Source: secalert@redhat.com

http://secunia.com/advisories/30818

Source: secalert@redhat.com

http://securitytracker.com/id?1019393

Source: secalert@redhat.com

http://wiki.rpath.com/Advisories:rPSA-2008-0052

Source: secalert@redhat.com

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0052

Source: secalert@redhat.com

http://www.debian.org/security/2008/dsa-1494

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2008:043

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2008:044

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2008-0129.html

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/488009/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/27704

Source: secalert@redhat.com

http://www.securityfocus.com/bid/27801

Source: secalert@redhat.com

http://www.ubuntu.com/usn/usn-577-1

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2008/0487/references

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=432229

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=432517

Source: secalert@redhat.com

https://issues.rpath.com/browse/RPL-2237

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11358

Source: secalert@redhat.com

https://www.exploit-db.com/exploits/5092

Source: secalert@redhat.com

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00254.html

Source: secalert@redhat.com

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00255.html

Source: secalert@redhat.com

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00270.html

Source: secalert@redhat.com

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00485.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html