CVE-2007-6206 — Sensitive Information Exposure in Kernel

CWE-200 — Sensitive Information Exposure7 documents6 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 82.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Canonical Ubuntu Linux Debian Linux +9 more

Timeline

PublishedDec 4

Latest updateMay 1

Description

The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages9 packages

▶NVDlinux/linux_kernel2.6.0 — 2.6.24+2

▶NVDsuse/linux_enterprise_server10

▶NVDsuse/linux_enterprise_desktop10

▶NVDredhat/enterprise_linux_server4.0

▶NVDredhat/enterprise_linux_desktop4.0

Also affects: Debian Linux 3.1, 4.0, Ubuntu Linux 6.06, 6.10, 7.04, 7.10, Enterprise Linux 4.6

🔴Vulnerability Details

GHSA

GHSA-c42f-578r-22gx: The do_coredump function in fs/exec↗2022-05-01

▶

CVEList

CVE-2007-6206: The do_coredump function in fs/exec↗2007-12-04

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2008-02-14

▶

Ubuntu

Linux kernel vulnerabilities↗2008-02-04

▶

Red Hat

Issue with core dump owner↗2004-07-10

▶

💬Community

Bugzilla

CVE-2007-6206 Issue with core dump owner↗2007-11-23

▶