CVE-2008-3915

Published Sep 11, 2008
Last updated a year ago
CVSS info 9.3
Overview

Description: Buffer overflow in nfsd in the Linux kernel before 2.6.26.4, when NFSv4 is enabled, allows remote attackers to have an unknown impact via vectors related to decoding an NFSv4 acl.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses

nvd@nist.gov: CWE-119
Hype score: Not currently trending
Vendor comments

Red HatThis issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and 5. It was addressed in Red Hat Enterprise MRG for RHEL-5 via: https://rhn.redhat.com/errata/RHSA-2008-0857.html
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C06F0037-DE20-4B4A-977F-BFCFAB026517"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.19.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86A98A70-51E3-4556-8DC4-DD09CF370D1A"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.19.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "469EE3B0-3CC2-4AC2-86A0-2DF34205E707"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.19.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EC547EB-9308-4477-8256-A0E04B42D6DA"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.20.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F55A024-9F8E-44F8-A0D8-696BC232524A"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.20.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84595143-3B04-4CE8-81C0-28EEEC58CD0E"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.20.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32EE2B49-DDEB-4B49-A5F0-CAA161095A5F"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.20.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3ABFA33-8FA1-488E-A9BD-1593F495F595"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.20.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62F6DE3A-E6CC-4D7E-BD08-E43DC4182200"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.20.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9A29C44-EBE5-42B0-AFAD-C5A8F6EEF2F8"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.21.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96A43C95-8569-40BE-9E5B-F9B3D0B9D188"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.21.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABD70B2B-9827-4DBB-B82D-0B70C2D4AB1F"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.21.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99662904-E5E3-4E81-B199-39707EAEB652"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "615BDD1D-36AA-4976-909B-F0F66BF1090C"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61A3EDF2-09D7-4116-AE46-D86E4B9602AC"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12A55028-B8F9-4AD2-AE57-A80D561F3C79"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C4E641C-67D4-4599-8EFB-0B2F8D81D68C"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70460F6C-D6C0-4C1A-B13E-368705EAF223"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F26BA18-08AD-45FE-9F83-25CCB2E27270"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EBFF148-3EDA-4216-910B-8930D8C443C2"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "648C63F7-EA1D-4F2E-B8AF-1F380C83E542"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1697B855-4834-4633-A5C8-C1F7F13ACE0D"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FBAE75F-9145-4B9A-A6D8-E488C5326145"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5990C6C2-2F66-4C4D-8224-74163865F410"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A45A9B9-4B19-4A5B-BC95-BCBC4EF00F12"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C23AD176-3B99-4593-BCBD-13C1E579A13E"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "034DFD7F-8919-4245-8480-7B272F591271"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CEBC606-6488-48CE-8AA8-5B8CC724D5D0"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.22.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A83C60AF-50A9-480E-860D-45E80AC0A6B7"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C6A3A30-FEA4-40B6-98A9-1840BB4E8CBE"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE87D1BC-A72D-42D2-A93C-67A5823BEB14"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AAC2E9D-0E82-4866-9046-ADD448418198"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "760FB32D-9795-4B29-B79A-A32B5E70F7EE"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DFF67E9-B0C2-48D5-BB3A-CF21D10010FF"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5881A78C-D162-4DE5-8353-2BB1EC1F428B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B13D81D2-1A89-4E61-A90C-5E8BB880310B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80F9887E-2466-4C73-A8E1-2117492F9EC9"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FDE5B27-2EF0-464E-8F14-5E809D84D389"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.23.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "815B2EE8-136F-44E4-997D-5F93A54775DD"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13673DF5-09B1-40C8-AC54-A447DE8AB01E"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52152F5A-1833-4490-A373-9C547B90B0F8"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B64A095E-5E97-445E-B435-F09983CC0E7A"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8035F93-9DEE-4B92-ABAA-4ABE0B71BF41"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EE92406-DBF3-463E-8A51-F9679E851FDB"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C60D19B-ED9B-443C-9D49-002ABD381119"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "264C61EE-64F6-43AD-B54F-7D683C29E64F"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.24.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0149408A-30F6-4EDF-8B3B-CBAB884CE758"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71295664-89EC-4BB3-9F86-B1DDA20FAC5A"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37BE853A-BA6F-4A70-B166-E34441F0B7DE"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85064FDF-4B62-43BF-B36C-F659D739BC22"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEADC505-FF44-4D45-8EA6-B23A1C4564D1"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CE3C807-5C9B-4B71-868B-DF17ECB1514F"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6CADAA2-91D2-40C4-90F3-D7F40A3D4CB0"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45B6847C-873B-4BE1-852D-239115E59BA4"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF41209E-D27F-4642-A405-90E822A41897"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97F59FD9-46E5-4F63-80A0-091AD44D1867"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "428844A5-E020-4AE9-8012-9AEDFCB7C32E"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94C9D70D-A552-48D6-9497-EE07EB5649D1"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF6169FF-9FF9-4A81-BAEB-6D5132F64F61"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6DC79CF-A504-4232-9F66-B5DCD0213DA0"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "192B4273-0935-4232-BBFD-A850855CAC5F"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60E9FDA8-7EC3-4B9B-B508-27F948D60DDB"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.25.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4E4A6E5-0C2C-42FD-B982-684CCB0DDFBB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Vendor comments

Configurations

References
