CVE-2008-4307

NONECVSS 0.0

0.0

Race condition in the do_setlk function in fs/nfs/file.c in the Linux kernel before 2.6.26 allows local users to cause a denial of service (crash) via vectors resulting in an interrupted RPC call that leads to a stray FL_POSIX lock, related to improper handling of a race between fcntl and close in the EINTR case.

🔗 References (42)

secalert@redhathttp://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git%3Ba=commit%3Bh=c4d7c402b788b73dc24f1e54a57f89d3dc5eb7bc
secalert@redhathttp://openwall.com/lists/oss-security/2009/01/13/1
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2009-0459.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2009-0473.html
secalert@redhathttp://secunia.com/advisories/34917
secalert@redhathttp://secunia.com/advisories/34962
secalert@redhathttp://secunia.com/advisories/34981
secalert@redhathttp://secunia.com/advisories/35011
secalert@redhathttp://secunia.com/advisories/35015
secalert@redhathttp://secunia.com/advisories/37471
secalert@redhathttp://www.debian.org/security/2009/dsa-1787
secalert@redhathttp://www.debian.org/security/2009/dsa-1794
secalert@redhathttp://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.26
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2009-0451.html
secalert@redhathttp://www.securityfocus.com/archive/1/507985/100/0/threaded

Is Your Infrastructure Affected by CVE-2008-4307?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-4307

📅 Published

🔄 Last Modified

🔗 References (42)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-4307?