Back to search
CVE-2008-4410
Published: Oct 3, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the Virtual Machine Interface (VMI) in the Linux kernel 2.6.26.5 invokes write_idt_entry where write_ldt_entry was intended, which allows local users to cause a denial of service (persistent application failure) via crafted function calls, related to the Java Runtime Environment (JRE) experiencing improper LDT selector state, a different vulnerability than CVE-2008-3247.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
linux-kernel-vmiwriteldtentry-dos(45687)
vdb-entry
x_refsource_XF
SUSE-SA:2008:053
vendor-advisory
x_refsource_SUSE
FEDORA-2008-8929
vendor-advisory
x_refsource_FEDORA
[oss-security] 20081003 CVE request: kernel: x86: Fix broken LDT access in VMI
mailing-list
x_refsource_MLIST
32386
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-8980
vendor-advisory
x_refsource_FEDORA
31565
vdb-entry
x_refsource_BID
48743
vdb-entry
x_refsource_OSVDB
32124
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now