QwikSec

Security Database

CVE

CWE

Training

CVE-2007-3848

Published: Aug 14, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die, which delivers an attacker-controlled parent process death signal (PR_SET_PDEATHSIG).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SA:2008:017

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-3848

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

20070814 COSEINC Linux Advisory #1: Linux Kernel Parent Process DeathSignal Vulnerability

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

https://issues.rpath.com/browse/RPL-1648

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

SUSE-SA:2007:053

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

20070816 Re: COSEINC Linux Advisory #1: Linux Kernel Parent Process Death Signal Vulnerability

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_DEBIAN

http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

third-party-advisory

x_refsource_SECUNIA

20070814 Re: COSEINC Linux Advisory #1: Linux Kernel Parent Process Death Signal Vulnerability

mailing-list

x_refsource_BUGTRAQ

20070814 COSEINC Linux Advisory #1: Linux Kernel Parent Process Death Signal Vulnerability

mailing-list

x_refsource_BUGTRAQ

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.4

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

SUSE-SA:2008:006

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

[openwall-announce] 20070814 Linux 2.4.35-ow2

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:10120

vdb-entry

signature

x_refsource_OVAL

vendor-advisory

x_refsource_UBUNTU

20070815 Re: COSEINC Linux Advisory #1: Linux Kernel Parent Process Death Signal Vulnerability

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.