Vulnerability Details CVE-2007-3739
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.2%
CVSS Severity
CVSS v2 Score 4.7
References
- http://lkml.org/lkml/2007/1/29/180
- http://secunia.com/advisories/23955
- http://secunia.com/advisories/26760
- http://secunia.com/advisories/26955
- http://secunia.com/advisories/26978
- http://secunia.com/advisories/27436
- http://secunia.com/advisories/27747
- http://secunia.com/advisories/27913
- http://secunia.com/advisories/29058
- http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm
- http://www.debian.org/security/2007/dsa-1378
- http://www.debian.org/security/2008/dsa-1504
- http://www.redhat.com/support/errata/RHSA-2007-0705.html
- http://www.redhat.com/support/errata/RHSA-2007-0939.html
- http://www.redhat.com/support/errata/RHSA-2007-1049.html
- http://www.ubuntu.com/usn/usn-518-1
- https://bugzilla.redhat.com/show_bug.cgi?id=253313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36592
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11455
- http://lkml.org/lkml/2007/1/29/180
- http://secunia.com/advisories/23955
- http://secunia.com/advisories/26760
- http://secunia.com/advisories/26955
- http://secunia.com/advisories/26978
- http://secunia.com/advisories/27436
- http://secunia.com/advisories/27747
- http://secunia.com/advisories/27913
- http://secunia.com/advisories/29058
- http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm
- http://www.debian.org/security/2007/dsa-1378
- http://www.debian.org/security/2008/dsa-1504
- http://www.redhat.com/support/errata/RHSA-2007-0705.html
- http://www.redhat.com/support/errata/RHSA-2007-0939.html
- http://www.redhat.com/support/errata/RHSA-2007-1049.html
- http://www.ubuntu.com/usn/usn-518-1
- https://bugzilla.redhat.com/show_bug.cgi?id=253313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36592
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11455
Products affected by CVE-2007-3739
-
cpe:2.3:h:apple:powerpc:-
-
cpe:2.3:o:redhat:enterprise_linux:5.0