Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2007-6206
Description:The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2007-6206
BugTraq ID: 26701
Bugtraq: 20080208 rPSA-2008-0048-1 kernel (Google Search)
Debian Security Information: DSA-1436 (Google Search)
Debian Security Information: DSA-1503 (Google Search)
Debian Security Information: DSA-1504 (Google Search)
RedHat Security Advisories: RHSA-2008:0055
RedHat Security Advisories: RHSA-2008:0089
RedHat Security Advisories: RHSA-2008:0211
RedHat Security Advisories: RHSA-2008:0787
SuSE Security Announcement: SUSE-SA:2008:007 (Google Search)
SuSE Security Announcement: SUSE-SA:2008:030 (Google Search)
SuSE Security Announcement: SUSE-SA:2008:032 (Google Search)
XForce ISS Database: kernel-core-dump-information-disclosure(38841)

© 1998-2022 E-Soft Inc. All rights reserved.