Back to search
CVE-2008-1628
Published: Apr 2, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the audit_log_user_command function in lib/audit_logging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SR:2008:010
vendor-advisory
x_refsource_SUSE
29617
third-party-advisory
x_refsource_SECUNIA
ADV-2008-1052
vdb-entry
x_refsource_VUPEN
http://people.redhat.com/sgrubb/audit/ChangeLog
x_refsource_CONFIRM
GLSA-200807-14
vendor-advisory
x_refsource_GENTOO
FEDORA-2008-3012
vendor-advisory
x_refsource_FEDORA
28524
vdb-entry
x_refsource_BID
1019824
vdb-entry
x_refsource_SECTRACK
linuxaudit-auditlogusercommand-bo(41576)
vdb-entry
x_refsource_XF
[linux-audit] 20080330 audit 1.7 released
mailing-list
x_refsource_MLIST
MDVSA-2008:083
vendor-advisory
x_refsource_MANDRIVA
31316
third-party-advisory
x_refsource_SECUNIA
29754
third-party-advisory
x_refsource_SECUNIA
29957
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now