CVE-2008-2944

CWE-4155 documents5 sources

Severity

4.9MEDIUM

EPSS

0.1%

top 81.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fedoraproject Fedora Core Linux Linux Kernel Redhat Enterprise Linux

Timeline

PublishedJun 30

Latest updateMay 1

Description

Double free vulnerability in the utrace support in the Linux kernel, probably 2.6.18, in Red Hat Enterprise Linux (RHEL) 5 and Fedora Core 6 (FC6) allows local users to cause a denial of service (oops), as demonstrated by a crash when running the GNU GDB testsuite, a different vulnerability than CVE-2008-2365.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages2 packages

▶NVDlinux/linux_kernel2.6.18

▶NVDfedoraproject/fedora_core6

Also affects: Enterprise Linux 5.0

🔴Vulnerability Details

GHSA

GHSA-hqv4-9647-qxr5: Double free vulnerability in the utrace support in the Linux kernel, probably 2↗2022-05-01

▶

CVEList

CVE-2008-2944: Double free vulnerability in the utrace support in the Linux kernel, probably 2↗2008-06-30

▶

📋Vendor Advisories

Red Hat

crash - mmput()/unmap_vmas() - gdb testsuite↗2006-09-18

▶

💬Community

Bugzilla

CVE-2008-2944 crash - mmput()/unmap_vmas() - gdb testsuite↗2008-07-07

▶