CVE-2009-1046
published 2009-03-23CVE-2009-1046: The console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows…
PriorityP417medium4.7CVSS 2.0
AVLACMAuNCNINAC
EXPLOIT
EPSS
0.78%
51.4th percentile
The console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate attackers to cause a denial of service (memory corruption) by selecting a small number of 3-byte UTF-8 characters, which triggers an "off-by-two memory error." NOTE: it is not clear whether this issue crosses privilege boundaries.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.04.7MEDIUMAV:L/AC:M/Au:N/C:N/I:N/A:C
vendor_redhat4.7MEDIUM
vendor_ubuntu4.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-76f5-x782-3pq8: The console selection feature in the Linux kernel 2
ghsa_unreviewed·2022-05-02
CVE-2009-1046 [MEDIUM] GHSA-76f5-x782-3pq8: The console selection feature in the Linux kernel 2
The console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate attackers to cause a denial of service (memory corruption) by selecting a small number of 3-byte UTF-8 characters, which triggers an "off-by-two memory error." NOTE: it is not clear whether this issue crosses privilege boundaries.
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2009-04-06·CVSS 4.0
CVE-2008-4307 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
NFS did not correctly handle races between fcntl and interrupts. A local
attacker on an NFS mount could consume unlimited kernel memory, leading to
a denial of service. Ubuntu 8.10 was not affected. (CVE-2008-4307)
Sparc syscalls did not correctly check mmap regions. A local attacker
could cause a system panic, leading to a denial of service. Ubuntu 8.10
was not affected. (CVE-2008-6107)
In certain situations, cloned processes were able to send signals to parent
processes, crossing privilege boundaries. A local attacker could send
arbitrary signals to parent processes, leading to a denial of service.
(CVE-2009-0028)
The kernel keyring did not free memory correctly. A local attacker could
consume unlimited kernel
Red Hat
kernel: utf8 selection memory corruption
vendor_redhat·2009-01-30·CVSS 4.7
CVE-2009-1046 [MEDIUM] kernel: utf8 selection memory corruption
kernel: utf8 selection memory corruption
The console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate attackers to cause a denial of service (memory corruption) by selecting a small number of 3-byte UTF-8 characters, which triggers an "off-by-two memory error." NOTE: it is not clear whether this issue crosses privilege boundaries.
Statement: This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and 5.
No detection rules found.
http://lists.openwall.net/linux-kernel/2009/01/30/333http://lists.openwall.net/linux-kernel/2009/02/02/364http://secunia.com/advisories/34917http://secunia.com/advisories/34981http://secunia.com/advisories/35121http://www.debian.org/security/2009/dsa-1787http://www.debian.org/security/2009/dsa-1800http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.4http://www.openwall.com/lists/oss-security/2009/02/12/10http://www.openwall.com/lists/oss-security/2009/02/12/11http://www.openwall.com/lists/oss-security/2009/02/12/9http://www.redhat.com/support/errata/RHSA-2009-0451.htmlhttp://www.securityfocus.com/bid/33672http://www.ubuntu.com/usn/usn-751-1http://lists.openwall.net/linux-kernel/2009/01/30/333http://lists.openwall.net/linux-kernel/2009/02/02/364http://secunia.com/advisories/34917http://secunia.com/advisories/34981http://secunia.com/advisories/35121http://www.debian.org/security/2009/dsa-1787http://www.debian.org/security/2009/dsa-1800http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.4http://www.openwall.com/lists/oss-security/2009/02/12/10http://www.openwall.com/lists/oss-security/2009/02/12/11http://www.openwall.com/lists/oss-security/2009/02/12/9http://www.redhat.com/support/errata/RHSA-2009-0451.htmlhttp://www.securityfocus.com/bid/33672http://www.ubuntu.com/usn/usn-751-1
2009-03-23
Published