CVE-2007-3850

Linux Kernel < 2.6.21 - Information Disclosure

Title source: rule

Description

The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space.

References (6)

[Patch] http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=721151d004dcf01a71b12bb6b893f9160284cf6e

[Third Party Advisory, VDB Entry] http://osvdb.org/45488

[Patch] http://rhn.redhat.com/errata/RHSA-2007-0940.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10793

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/26161

[Third Party Advisory] http://secunia.com/advisories/27322

Scores

EPSS 0.0010

EPSS Percentile 27.0%

Classification

CWE

CWE-200

Status draft

Affected Products (1)

linux/linux_kernel < 2.6.21

Timeline

Published Oct 23, 2007

Tracked Since Feb 18, 2026