CVE-2007-0253

Name: CVE-2007-0253
Creator: NVD / NIST
Published: 2007-01-16T23:28:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.32%

Last modified Jun 16, 2026

CVE-2007-0253 is a vulnerability of currently unknown severity. Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expand_stack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven. EPSS estimates a 0.32% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expand_stack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven

Metrics

EPSS Probability

0.32%

23.4th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Grsecurity	Grsecurity Kernel Patch	All versions

References

http://forums.grsecurity.net/viewtopic.php?t=1646Vendor Advisory
http://grsecurity.net/news.php#digitalfud
http://www.digitalarmaments.com/news_news.shtmlVendor Advisory, URL Repurposed
http://forums.grsecurity.net/viewtopic.php?t=1646Vendor Advisory
http://grsecurity.net/news.php#digitalfud
http://www.digitalarmaments.com/news_news.shtmlVendor Advisory, URL Repurposed

Timeline

Published: Jan 16, 2007
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-0253?

How severe is CVE-2007-0253?

Severity scoring for CVE-2007-0253 is pending analysis. The EPSS model estimates a 0.32% probability of exploitation in the next 30 days.

How do I fix CVE-2007-0253?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-0253?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST