CVE-2007-3731 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2007-3731

CVE-2007-3731

September 17, 2007

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain code that makes ptrace PTRACE_SETREGS and PTRACE_SINGLESTEP requests, related to the TRACE_IRQS_ON function, and possibly related to the arch_ptrace function.

Related Resources (20)

http://bugzilla.kernel.org/show_bug.cgi?id=8765

http://www.securityfocus.com/bid/25801

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=29eb51101c02df517ca64ec472d7501127ad1da8

https://people.canonical.com/~ubuntu-security/cve/CVE-2007-3731

https://bugzilla.redhat.com/show_bug.cgi?id=248324

https://access.redhat.com/security/cve/CVE-2007-3731

http://www.securityfocus.com/archive/1/488972/100/0/threaded

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=a10d9a71bafd3a283da240d2868e71346d2aef6f

http://secunia.com/advisories/26978

http://secunia.com/advisories/26955

https://issues.rpath.com/browse/RPL-2304