CVE-2009-0676
published 2009-02-22CVE-2009-0676: The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to…
PriorityP49low2.1CVSS 2.0
AVLACLAuNCPINAN
EXPLOIT
EPSS
0.70%
48.5th percentile
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.
Affected
286 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | <= 2.6.28.5 | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
vendor_ubuntu4.0MEDIUM
vendor_redhat2.1LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VMware
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
vendor_vmware·2009-11-20·CVSS 5.0
CVE-2007-2052 [MEDIUM] VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
VMSA-2009-0016: VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
a. JRE Security Update JRE update to version 1.5.0_20, which addresses multiple security issues that existed in earlier releases of JRE. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_18: CVE-2009-1093, CVE-2009-1094, CVE-2009-1095, CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100, CVE-2009-1101, CVE-2009-1102, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105, CVE-2009-1106, and CVE-2009-1107. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_20: CVE-2009-
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2009-04-07·CVSS 4.0
CVE-2009-0029 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
NFS did not correctly handle races between fcntl and interrupts. A local
attacker on an NFS mount could consume unlimited kernel memory, leading to
a denial of service. (CVE-2008-4307)
Sparc syscalls did not correctly check mmap regions. A local attacker could
cause a system panic, leading to a denial of service. (CVE-2008-6107)
In certain situations, cloned processes were able to send signals to parent
processes, crossing privilege boundaries. A local attacker could send
arbitrary signals to parent processes, leading to a denial of service.
(CVE-2009-0028)
The 64-bit syscall interfaces did not correctly handle sign extension. A
local attacker could make malicious syscalls, possibly gaining root
privileges. The
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2009-04-06·CVSS 4.0
CVE-2008-4307 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
NFS did not correctly handle races between fcntl and interrupts. A local
attacker on an NFS mount could consume unlimited kernel memory, leading to
a denial of service. Ubuntu 8.10 was not affected. (CVE-2008-4307)
Sparc syscalls did not correctly check mmap regions. A local attacker
could cause a system panic, leading to a denial of service. Ubuntu 8.10
was not affected. (CVE-2008-6107)
In certain situations, cloned processes were able to send signals to parent
processes, crossing privilege boundaries. A local attacker could send
arbitrary signals to parent processes, leading to a denial of service.
(CVE-2009-0028)
The kernel keyring did not free memory correctly. A local attacker could
consume unlimited kernel
Red Hat
kernel: memory disclosure in SO_BSDCOMPAT gsopt
vendor_redhat·2009-02-11·CVSS 2.1
CVE-2009-0676 [LOW] kernel: memory disclosure in SO_BSDCOMPAT gsopt
kernel: memory disclosure in SO_BSDCOMPAT gsopt
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.
GHSA
GHSA-863c-wrq8-v36v: The sock_getsockopt function in net/core/sock
ghsa_unreviewed·2022-05-02
CVE-2009-0676 [LOW] GHSA-863c-wrq8-v36v: The sock_getsockopt function in net/core/sock
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.
No detection rules found.
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=df0bca049d01c0ee94afb7cd5dfd959541e6c8dahttp://lists.opensuse.org/opensuse-security-announce/2009-04/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.htmlhttp://lkml.org/lkml/2009/2/12/123http://marc.info/?l=linux-kernel&m=123540732700371&w=2http://openwall.com/lists/oss-security/2009/02/20/1http://patchwork.kernel.org/patch/6816/http://rhn.redhat.com/errata/RHSA-2009-0459.htmlhttp://secunia.com/advisories/33758http://secunia.com/advisories/34394http://secunia.com/advisories/34502http://secunia.com/advisories/34680http://secunia.com/advisories/34786http://secunia.com/advisories/34962http://secunia.com/advisories/34981http://secunia.com/advisories/35011http://secunia.com/advisories/35390http://secunia.com/advisories/35394http://secunia.com/advisories/37471http://www.debian.org/security/2009/dsa-1749http://www.debian.org/security/2009/dsa-1787http://www.debian.org/security/2009/dsa-1794http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.6http://www.mandriva.com/security/advisories?name=MDVSA-2009:071http://www.openwall.com/lists/oss-security/2009/02/24/1http://www.openwall.com/lists/oss-security/2009/03/02/6http://www.redhat.com/support/errata/RHSA-2009-0326.htmlhttp://www.redhat.com/support/errata/RHSA-2009-0360.htmlhttp://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/33846http://www.ubuntu.com/usn/usn-751-1http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2009/3316https://bugzilla.redhat.com/show_bug.cgi?id=486305https://exchange.xforce.ibmcloud.com/vulnerabilities/48847https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11653https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8618http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=df0bca049d01c0ee94afb7cd5dfd959541e6c8dahttp://lists.opensuse.org/opensuse-security-announce/2009-04/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.htmlhttp://lkml.org/lkml/2009/2/12/123http://marc.info/?l=linux-kernel&m=123540732700371&w=2http://openwall.com/lists/oss-security/2009/02/20/1http://patchwork.kernel.org/patch/6816/http://rhn.redhat.com/errata/RHSA-2009-0459.htmlhttp://secunia.com/advisories/33758http://secunia.com/advisories/34394http://secunia.com/advisories/34502http://secunia.com/advisories/34680http://secunia.com/advisories/34786http://secunia.com/advisories/34962http://secunia.com/advisories/34981http://secunia.com/advisories/35011http://secunia.com/advisories/35390http://secunia.com/advisories/35394http://secunia.com/advisories/37471http://www.debian.org/security/2009/dsa-1749http://www.debian.org/security/2009/dsa-1787http://www.debian.org/security/2009/dsa-1794http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.6http://www.mandriva.com/security/advisories?name=MDVSA-2009:071http://www.openwall.com/lists/oss-security/2009/02/24/1http://www.openwall.com/lists/oss-security/2009/03/02/6http://www.redhat.com/support/errata/RHSA-2009-0326.htmlhttp://www.redhat.com/support/errata/RHSA-2009-0360.htmlhttp://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/33846http://www.ubuntu.com/usn/usn-751-1http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2009/3316https://bugzilla.redhat.com/show_bug.cgi?id=486305https://exchange.xforce.ibmcloud.com/vulnerabilities/48847https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11653https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8618
2009-02-22
Published