CVE-2007-6206

Description

The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.

Category

2.1
CVSS
Severity: Low
CVSS 2.0 •
EPSS 0.08%
Vendor Advisory debian.org Vendor Advisory opensuse.org Vendor Advisory mandriva.com Vendor Advisory debian.org Vendor Advisory mandriva.com Vendor Advisory mandriva.com Vendor Advisory debian.org Vendor Advisory ubuntu.com Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory opensuse.org Vendor Advisory ubuntu.com Vendor Advisory redhat.com Vendor Advisory opensuse.org Vendor Advisory kernel.org
Affected: n/a n/a
Published at:
Updated at:

References

Link Tags
http://www.securityfocus.com/archive/1/487808/100/0/threaded mailing list third party advisory vdb entry
http://secunia.com/advisories/30962 third party advisory
http://bugzilla.kernel.org/show_bug.cgi?id=3043 vendor advisory issue tracking
http://secunia.com/advisories/27908 third party advisory
http://www.debian.org/security/2007/dsa-1436 third party advisory vendor advisory
http://secunia.com/advisories/28643 third party advisory
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html vendor advisory mailing list third party advisory
http://secunia.com/advisories/28141 third party advisory
http://secunia.com/advisories/28826 third party advisory
http://secunia.com/advisories/28706 third party advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112 third party advisory vendor advisory
http://www.debian.org/security/2008/dsa-1504 third party advisory vendor advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/38841 third party advisory vdb entry
http://www.securityfocus.com/bid/26701 third party advisory vdb entry
http://secunia.com/advisories/28889 third party advisory
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048 broken link
http://secunia.com/advisories/30110 third party advisory
http://www.vupen.com/english/advisories/2008/2222/references third party advisory vdb entry
http://secunia.com/advisories/33280 third party advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:086 third party advisory vendor advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:044 third party advisory vendor advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10719 signature third party advisory vdb entry
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=c46f739dd39db3b07ab5deb4e3ec81e1c04a91af
http://www.debian.org/security/2008/dsa-1503 third party advisory vendor advisory
http://secunia.com/advisories/28748 third party advisory
http://www.ubuntu.com/usn/usn-574-1 third party advisory vendor advisory
http://www.vupen.com/english/advisories/2007/4090 third party advisory vdb entry
http://secunia.com/advisories/29058 third party advisory
http://www.redhat.com/support/errata/RHSA-2008-0211.html third party advisory vendor advisory
http://secunia.com/advisories/28971 third party advisory
http://www.redhat.com/support/errata/RHSA-2008-0787.html third party advisory vendor advisory
http://www.redhat.com/support/errata/RHSA-2008-0089.html third party advisory vendor advisory
http://lists.vmware.com/pipermail/security-announce/2008/000023.html third party advisory mailing list
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html vendor advisory mailing list third party advisory
http://www.ubuntu.com/usn/usn-578-1 third party advisory vendor advisory
http://secunia.com/advisories/31246 third party advisory
http://rhn.redhat.com/errata/RHSA-2008-0055.html third party advisory vendor advisory
http://secunia.com/advisories/30818 third party advisory
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html vendor advisory mailing list third party advisory

Frequently Asked Questions

What is the severity of CVE-2007-6206?
CVE-2007-6206 has been scored as a low severity vulnerability.
How to fix CVE-2007-6206?
To fix CVE-2007-6206, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2007-6206 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2007-6206 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.