NVD Vulnerability Detail

CVE-2008-3275

Summary	The (1) real_lookup and (2) __lookup_hash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted (aka S_DEAD) directory, which allows local users to cause a denial of service ("overflow" of the UBIFS orphan area) via a series of attempted file creations within deleted directories.
Summary	Las funciones (1) real_lookup y (2) __lookup_hash en el archivo fs/namei.c en la implementación de vfs en el kernel de Linux anterior a versión 2.6.25.15 no previene la creación de una matriz de elementos secundarios para un directorio eliminado (también se conoce como S_DEAD), que permite a los usuarios locales causar una denegación de servicio ("overflow" del área huérfana UBIFS) por medio de una serie de intentos de creación de archivos sin eliminar los directorios.
Publication Date	Aug. 13, 2008, 8:41 a.m.
Registration Date	Jan. 29, 2021, 1:39 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS3.1 : MEDIUM
スコア	5.5
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	低
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高

CVSS2.0 : MEDIUM
Score	4.9
Vector	AV:L/AC:L/Au:N/C:N/I:N/A:C
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel::::::::				2.6.25.15
cpe:2.3:o:debian:debian_linux:4.0:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*
cpe:2.3:o:canonical:ubuntu_linux:7.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:8.04::::lts:::
cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp1::::::
cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp1::::::

Related information, measures and tools

No	URL	refsource
1	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d70b67c8bc72ee23b55381bd6a884f4796692f77	secalert@redhat.com
2	http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.15	secalert@redhat.com
3	http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00001.html	secalert@redhat.com
4	http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00003.html	secalert@redhat.com
5	http://lkml.org/lkml/2008/7/2/83	secalert@redhat.com
6	http://secunia.com/advisories/31551	secalert@redhat.com
7	http://secunia.com/advisories/31614	secalert@redhat.com
8	http://secunia.com/advisories/31836	secalert@redhat.com
9	http://secunia.com/advisories/31881	secalert@redhat.com
10	http://secunia.com/advisories/32023	secalert@redhat.com
11	http://secunia.com/advisories/32104	secalert@redhat.com
12	http://secunia.com/advisories/32190	secalert@redhat.com
13	http://secunia.com/advisories/32344	secalert@redhat.com
14	http://secunia.com/advisories/33201	secalert@redhat.com
15	http://secunia.com/advisories/33280	secalert@redhat.com
16	http://secunia.com/advisories/33556	secalert@redhat.com
17	http://www.debian.org/security/2008/dsa-1630	secalert@redhat.com
18	http://www.debian.org/security/2008/dsa-1636	secalert@redhat.com
19	http://www.mandriva.com/security/advisories?name=MDVSA-2008:220	secalert@redhat.com
20	http://www.redhat.com/support/errata/RHSA-2008-0787.html	secalert@redhat.com
21	http://www.redhat.com/support/errata/RHSA-2008-0857.html	secalert@redhat.com
22	http://www.redhat.com/support/errata/RHSA-2008-0885.html	secalert@redhat.com
23	http://www.redhat.com/support/errata/RHSA-2008-0973.html	secalert@redhat.com
24	http://www.redhat.com/support/errata/RHSA-2009-0014.html	secalert@redhat.com
25	http://www.securityfocus.com/bid/30647	secalert@redhat.com
26	http://www.securitytracker.com/id?1020739	secalert@redhat.com
27	http://www.vupen.com/english/advisories/2008/2430	secalert@redhat.com
28	https://bugzilla.redhat.com/show_bug.cgi?id=457858	secalert@redhat.com
29	https://exchange.xforce.ibmcloud.com/vulnerabilities/44410	secalert@redhat.com
30	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10744	secalert@redhat.com
31	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6551	secalert@redhat.com
32	https://usn.ubuntu.com/637-1/	secalert@redhat.com
33	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d70b67c8bc72ee23b55381bd6a884f4796692f77	af854a3a-2127-422b-91ae-364da2661108
34	http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.15	af854a3a-2127-422b-91ae-364da2661108
35	http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00001.html	af854a3a-2127-422b-91ae-364da2661108
36	http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00003.html	af854a3a-2127-422b-91ae-364da2661108
37	http://lkml.org/lkml/2008/7/2/83	af854a3a-2127-422b-91ae-364da2661108
38	http://secunia.com/advisories/31551	af854a3a-2127-422b-91ae-364da2661108
39	http://secunia.com/advisories/31614	af854a3a-2127-422b-91ae-364da2661108
40	http://secunia.com/advisories/31836	af854a3a-2127-422b-91ae-364da2661108
41	http://secunia.com/advisories/31881	af854a3a-2127-422b-91ae-364da2661108
42	http://secunia.com/advisories/32023	af854a3a-2127-422b-91ae-364da2661108
43	http://secunia.com/advisories/32104	af854a3a-2127-422b-91ae-364da2661108
44	http://secunia.com/advisories/32190	af854a3a-2127-422b-91ae-364da2661108
45	http://secunia.com/advisories/32344	af854a3a-2127-422b-91ae-364da2661108
46	http://secunia.com/advisories/33201	af854a3a-2127-422b-91ae-364da2661108
47	http://secunia.com/advisories/33280	af854a3a-2127-422b-91ae-364da2661108
48	http://secunia.com/advisories/33556	af854a3a-2127-422b-91ae-364da2661108
49	http://www.debian.org/security/2008/dsa-1630	af854a3a-2127-422b-91ae-364da2661108
50	http://www.debian.org/security/2008/dsa-1636	af854a3a-2127-422b-91ae-364da2661108
51	http://www.mandriva.com/security/advisories?name=MDVSA-2008:220	af854a3a-2127-422b-91ae-364da2661108
52	http://www.redhat.com/support/errata/RHSA-2008-0787.html	af854a3a-2127-422b-91ae-364da2661108
53	http://www.redhat.com/support/errata/RHSA-2008-0857.html	af854a3a-2127-422b-91ae-364da2661108
54	http://www.redhat.com/support/errata/RHSA-2008-0885.html	af854a3a-2127-422b-91ae-364da2661108
55	http://www.redhat.com/support/errata/RHSA-2008-0973.html	af854a3a-2127-422b-91ae-364da2661108
56	http://www.redhat.com/support/errata/RHSA-2009-0014.html	af854a3a-2127-422b-91ae-364da2661108
57	http://www.securityfocus.com/bid/30647	af854a3a-2127-422b-91ae-364da2661108
58	http://www.securitytracker.com/id?1020739	af854a3a-2127-422b-91ae-364da2661108
59	http://www.vupen.com/english/advisories/2008/2430	af854a3a-2127-422b-91ae-364da2661108
60	https://bugzilla.redhat.com/show_bug.cgi?id=457858	af854a3a-2127-422b-91ae-364da2661108
61	https://exchange.xforce.ibmcloud.com/vulnerabilities/44410	af854a3a-2127-422b-91ae-364da2661108
62	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10744	af854a3a-2127-422b-91ae-364da2661108
63	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6551	af854a3a-2127-422b-91ae-364da2661108
64	https://usn.ubuntu.com/637-1/	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-120	古典的バッファオーバーフロー	https://cwe.mitre.org/data/definitions/120.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel::::::::				2.6.25.15
cpe:2.3:o:debian:debian_linux:4.0:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*
cpe:2.3:o:canonical:ubuntu_linux:7.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:8.04::::lts:::
cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp1::::::
cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp1::::::