CVE-2008-1375
UnknownEPSS 0.31%
Last modified
CVE-2008-1375 is a vulnerability of currently unknown severity. Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly gain privileges via unspecified vectors.. EPSS estimates a 0.31% chance of exploitation in the next 30 days.
Description
Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly gain privileges via unspecified vectors.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | >= 2.6.0, < 2.6.24.6 | — |
| Linux | Linux Kernel | 2.6.25 | — |
| Canonical | Ubuntu Linux | 6.06 | — |
| Canonical | Ubuntu Linux | 7.04 | — |
| Canonical | Ubuntu Linux | 7.10 | — |
| Canonical | Ubuntu Linux | 8.04 | — |
| Opensuse | Opensuse | 10.2 | — |
| Opensuse | Opensuse | 10.3 | — |
| Suse | Linux Enterprise Desktop | 10 | Sp1 |
| Suse | Linux Enterprise Server | 9 | — |
| Suse | Linux Enterprise Server | 10 | Sp1 |
| Suse | Linux Enterprise Software Development Kit | 10 | Sp1 |
| Debian | Debian Linux | 4.0 | — |
| Fedoraproject | Fedora | 8 | — |
References
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.htmlMailing List, Third Party Advisory
- http://lists.vmware.com/pipermail/security-announce/2008/000023.htmlThird Party Advisory
- http://marc.info/?l=linux-kernel&m=120967963803205&w=2Patch, Third Party Advisory
- http://marc.info/?l=linux-kernel&m=120967964303224&w=2Patch, Third Party Advisory
- http://secunia.com/advisories/30017Third Party Advisory
- http://secunia.com/advisories/30018Third Party Advisory
- http://secunia.com/advisories/30044Third Party Advisory
- http://secunia.com/advisories/30108Third Party Advisory
- http://secunia.com/advisories/30110Third Party Advisory
- http://secunia.com/advisories/30112Third Party Advisory
- http://secunia.com/advisories/30116Third Party Advisory
- http://secunia.com/advisories/30260Third Party Advisory
- http://secunia.com/advisories/30515Third Party Advisory
- http://secunia.com/advisories/30769Third Party Advisory
- http://secunia.com/advisories/30818Third Party Advisory
- http://secunia.com/advisories/30890Third Party Advisory
- http://secunia.com/advisories/30962Third Party Advisory
- http://secunia.com/advisories/31246Third Party Advisory
- http://www.debian.org/security/2008/dsa-1565Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:104Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:105Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:167Third Party Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0211.htmlThird Party Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0233.htmlThird Party Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0237.htmlThird Party Advisory
- http://www.securityfocus.com/archive/1/491566/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/archive/1/491732/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/29003Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id?1019959Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/usn-618-1Third Party Advisory
- http://www.vupen.com/english/advisories/2008/1406/referencesThird Party Advisory
- http://www.vupen.com/english/advisories/2008/1452/referencesThird Party Advisory
- http://www.vupen.com/english/advisories/2008/2222/referencesThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42131Third Party Advisory, VDB Entry
- https://issues.rpath.com/browse/RPL-2501Broken Link
- https://usn.ubuntu.com/614-1/Third Party Advisory
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00232.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.htmlMailing List, Third Party Advisory
- http://lists.vmware.com/pipermail/security-announce/2008/000023.htmlThird Party Advisory
- http://marc.info/?l=linux-kernel&m=120967963803205&w=2Patch, Third Party Advisory
- http://marc.info/?l=linux-kernel&m=120967964303224&w=2Patch, Third Party Advisory
- http://secunia.com/advisories/30017Third Party Advisory
- http://secunia.com/advisories/30018Third Party Advisory
- http://secunia.com/advisories/30044Third Party Advisory
- http://secunia.com/advisories/30108Third Party Advisory
- http://secunia.com/advisories/30110Third Party Advisory
- http://secunia.com/advisories/30112Third Party Advisory
- http://secunia.com/advisories/30116Third Party Advisory
- http://secunia.com/advisories/30260Third Party Advisory
- http://secunia.com/advisories/30515Third Party Advisory
- http://secunia.com/advisories/30769Third Party Advisory
- http://secunia.com/advisories/30818Third Party Advisory
- http://secunia.com/advisories/30890Third Party Advisory
- http://secunia.com/advisories/30962Third Party Advisory
- http://secunia.com/advisories/31246Third Party Advisory
- http://www.debian.org/security/2008/dsa-1565Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:104Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:105Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:167Third Party Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0211.htmlThird Party Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0233.htmlThird Party Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0237.htmlThird Party Advisory
- http://www.securityfocus.com/archive/1/491566/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/archive/1/491732/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/29003Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id?1019959Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/usn-618-1Third Party Advisory
- http://www.vupen.com/english/advisories/2008/1406/referencesThird Party Advisory
- http://www.vupen.com/english/advisories/2008/1452/referencesThird Party Advisory
- http://www.vupen.com/english/advisories/2008/2222/referencesThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42131Third Party Advisory, VDB Entry
- https://issues.rpath.com/browse/RPL-2501Broken Link
- https://usn.ubuntu.com/614-1/Third Party Advisory
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00232.htmlThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-1375?
Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly gain privileges via unspecified vectors.
How severe is CVE-2008-1375?
Severity scoring for CVE-2008-1375 is pending analysis. The EPSS model estimates a 0.31% probability of exploitation in the next 30 days.
How do I fix CVE-2008-1375?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2008-1375?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST