CVE: CVE-2008-3832
Fedora 8 and 9 Linux kernel is prone to a local denial-of-service vulnerability.
Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Given the nature of this issue, attackers may also be able to execute arbitrary code, but this has not been confirmed.
Note that this issue does not affect upstream kernel versions. Only the following Fedora distributions are affected:
Fedora 8 prior to kernel-2.6.26.5-28
Fedora 9 prior to kernel-2.6.26.5-45
Fedora 8/9 Linux Kernel 'utrace_control' NULL Pointer Dereference Denial of Service Vulnerability
Published:2008-10-02
Vulnerable:
RedHat Fedora 9 0
RedHat Fedora 8 0
Discription:
<*References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-3832*>
http://permalink.gmane.org/gmane.comp.security.oss.general/1003
SEBUG Solution:
Updates are available. Please see the references for more information.
Exploit:
[www.sebug.net]
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
An attacker can exploit this issue with readily available tools. The following 'gdb' command is sufficient to trigger a kernel crash: gdb any_executable 1
// Sebug.net [ 2008-10-04 ]