CVE

Id
27665  
CVE No.
CVE-2007-4308  
Status
Candidate  
Description
The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges.  
Phase
Assigned (20070813)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
284741 27665 CVE-2007-4308 BUGTRAQ:20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates  View
284742 27665 CVE-2007-4308 URL:http://www.securityfocus.com/archive/1/archive/1/488457/100/0/threaded  View
284743 27665 CVE-2007-4308 MLIST:[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates  View
284744 27665 CVE-2007-4308 URL:http://lists.vmware.com/pipermail/security-announce/2008/000005.html  View
284745 27665 CVE-2007-4308 CONFIRM:http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.23-rc2  View
284746 27665 CVE-2007-4308 CONFIRM:http://lkml.org/lkml/2007/7/23/195  View
284747 27665 CVE-2007-4308 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm  View
284748 27665 CVE-2007-4308 DEBIAN:DSA-1363  View
284749 27665 CVE-2007-4308 URL:http://www.debian.org/security/2007/dsa-1363  View
284750 27665 CVE-2007-4308 DEBIAN:DSA-1503  View
284751 27665 CVE-2007-4308 URL:http://www.debian.org/security/2008/dsa-1503  View
284752 27665 CVE-2007-4308 DEBIAN:DSA-1504  View
284753 27665 CVE-2007-4308 URL:http://www.debian.org/security/2008/dsa-1504  View
284754 27665 CVE-2007-4308 MANDRIVA:MDKSA-2007:196  View
284755 27665 CVE-2007-4308 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:196  View
284756 27665 CVE-2007-4308 MANDRIVA:MDKSA-2007:195  View
284757 27665 CVE-2007-4308 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:195  View
284758 27665 CVE-2007-4308 REDHAT:RHSA-2007:0940  View
284759 27665 CVE-2007-4308 URL:http://www.redhat.com/support/errata/RHSA-2007-0940.html  View
284760 27665 CVE-2007-4308 REDHAT:RHSA-2007:0939  View
284761 27665 CVE-2007-4308 URL:http://www.redhat.com/support/errata/RHSA-2007-0939.html  View
284762 27665 CVE-2007-4308 REDHAT:RHSA-2007:1049  View
284763 27665 CVE-2007-4308 URL:http://www.redhat.com/support/errata/RHSA-2007-1049.html  View
284764 27665 CVE-2007-4308 REDHAT:RHSA-2008:0787  View
284765 27665 CVE-2007-4308 URL:http://www.redhat.com/support/errata/RHSA-2008-0787.html  View
284766 27665 CVE-2007-4308 SUSE:SUSE-SA:2007:064  View
284767 27665 CVE-2007-4308 URL:http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html  View
284768 27665 CVE-2007-4308 SUSE:SUSE-SA:2008:006  View
284769 27665 CVE-2007-4308 URL:http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html  View
284770 27665 CVE-2007-4308 SUSE:SUSE-SA:2008:017  View
284771 27665 CVE-2007-4308 URL:http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html  View
284772 27665 CVE-2007-4308 UBUNTU:USN-510-1  View
284773 27665 CVE-2007-4308 URL:http://www.ubuntu.com/usn/usn-510-1  View
284774 27665 CVE-2007-4308 UBUNTU:USN-508-1  View
284775 27665 CVE-2007-4308 URL:http://www.ubuntu.com/usn/usn-508-1  View
284776 27665 CVE-2007-4308 UBUNTU:USN-509-1  View
284777 27665 CVE-2007-4308 URL:http://www.ubuntu.com/usn/usn-509-1  View
284778 27665 CVE-2007-4308 BID:25216  View
284779 27665 CVE-2007-4308 URL:http://www.securityfocus.com/bid/25216  View
284780 27665 CVE-2007-4308 OVAL:oval:org.mitre.oval:def:8872  View
284781 27665 CVE-2007-4308 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8872  View
284782 27665 CVE-2007-4308 VUPEN:ADV-2007-2786  View
284783 27665 CVE-2007-4308 URL:http://www.vupen.com/english/advisories/2007/2786  View
284784 27665 CVE-2007-4308 VUPEN:ADV-2008-0637  View
284785 27665 CVE-2007-4308 URL:http://www.vupen.com/english/advisories/2008/0637  View
284786 27665 CVE-2007-4308 SECTRACK:1019470  View
284787 27665 CVE-2007-4308 URL:http://securitytracker.com/id?1019470  View
284788 27665 CVE-2007-4308 SECUNIA:26322  View
284789 27665 CVE-2007-4308 URL:http://secunia.com/advisories/26322  View
284790 27665 CVE-2007-4308 SECUNIA:26647  View
284791 27665 CVE-2007-4308 URL:http://secunia.com/advisories/26647  View
284792 27665 CVE-2007-4308 SECUNIA:26643  View
284793 27665 CVE-2007-4308 URL:http://secunia.com/advisories/26643  View
284794 27665 CVE-2007-4308 SECUNIA:26651  View
284795 27665 CVE-2007-4308 URL:http://secunia.com/advisories/26651  View
284796 27665 CVE-2007-4308 SECUNIA:27322  View
284797 27665 CVE-2007-4308 URL:http://secunia.com/advisories/27322  View
284798 27665 CVE-2007-4308 SECUNIA:27436  View
284799 27665 CVE-2007-4308 URL:http://secunia.com/advisories/27436  View
284800 27665 CVE-2007-4308 SECUNIA:27212  View
284801 27665 CVE-2007-4308 URL:http://secunia.com/advisories/27212  View
284802 27665 CVE-2007-4308 SECUNIA:27747  View
284803 27665 CVE-2007-4308 URL:http://secunia.com/advisories/27747  View
284804 27665 CVE-2007-4308 SECUNIA:27912  View
284805 27665 CVE-2007-4308 URL:http://secunia.com/advisories/27912  View
284806 27665 CVE-2007-4308 SECUNIA:27913  View
284807 27665 CVE-2007-4308 URL:http://secunia.com/advisories/27913  View
284808 27665 CVE-2007-4308 SECUNIA:28806  View
284809 27665 CVE-2007-4308 URL:http://secunia.com/advisories/28806  View
284810 27665 CVE-2007-4308 SECUNIA:29032  View
284811 27665 CVE-2007-4308 URL:http://secunia.com/advisories/29032  View
284812 27665 CVE-2007-4308 SECUNIA:29058  View
284813 27665 CVE-2007-4308 URL:http://secunia.com/advisories/29058  View
284814 27665 CVE-2007-4308 SECUNIA:29570  View
284815 27665 CVE-2007-4308 URL:http://secunia.com/advisories/29570  View
284816 27665 CVE-2007-4308 SECUNIA:33280  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
57263 JVNDB-2007-005955 Sun Solaris の finger デーモン における特定の非標準 GECOS フィールドを伴うアカウントを全てリスト化される脆弱性 Sun Solaris の finger デーモン (in.fingerd) には、特定の非標準 GECOS フィールドを伴う全アカウントを全てリスト化される脆弱性が存在します。 CVE-2007-4310 27665 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005955.html  View