CVE-2007-6417

Publication date 18 December 2007

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly clear allocated memory in some rare circumstances related to tmpfs, which might allow local users to read sensitive kernel data or cause a denial of service (crash).

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
linux 7.10 gutsy Not in release
7.04 feisty Not in release
6.10 edgy Not in release
6.06 LTS dapper Not in release
linux-source-2.6.15 7.10 gutsy Not in release
7.04 feisty Not in release
6.10 edgy Not in release
6.06 LTS dapper
Fixed 2.6.15-51.66
linux-source-2.6.17 7.10 gutsy Not in release
7.04 feisty Not in release
6.10 edgy
Fixed 2.6.17.1-12.43
6.06 LTS dapper Not in release
linux-source-2.6.20 7.10 gutsy Not in release
7.04 feisty
Fixed 2.6.20-16.34
6.10 edgy Not in release
6.06 LTS dapper Not in release
linux-source-2.6.22 7.10 gutsy
Fixed 2.6.22-14.51
7.04 feisty Not in release
6.10 edgy Not in release
6.06 LTS dapper Not in release

References

Related Ubuntu Security Notices (USN)

    • USN-574-1
    • Linux kernel vulnerabilities
    • 4 February 2008
    • USN-578-1
    • Linux kernel vulnerabilities
    • 14 February 2008

Other references