1. Home
  2. Vulnerabilities
  3. CVE-2007-2172

CVE-2007-2172

CVSS v2.0 4.7 (Medium)
47% Progress
EPSS 0.10 % (43th)
0.10% Progress
Affected Products 3
Advisories 2
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_MAX, which leads to an "out of bound access" by the (1) dn_fib_props (dn_fib.c, DECNet) and (2) fib_props (fib_semantics.c, IPv4) functions.

Weaknesses
CWE-20
Improper Input Validation
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2007-04-22 19:19:00
(17 years ago)
Updated Date
2023-11-07 02:00:33
(10 months ago)

Affected Products

Canonical

Debian

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel from 2.4.0 version and prior 2.4.35 version cpe:2.3:o:linux:linux_kernel >= 2.4.0 < 2.4.35
  Linux Kernel from 2.6.0 version and 2.6.20 and prior versions cpe:2.3:o:linux:linux_kernel >= 2.6.0 <= 2.6.20
  Linux Kernel 2.6.21 Git1 cpe:2.3:o:linux:linux_kernel:2.6.21:git1
  Linux Kernel 2.6.21 Git2 cpe:2.3:o:linux:linux_kernel:2.6.21:git2
  Linux Kernel 2.6.21 Git3 cpe:2.3:o:linux:linux_kernel:2.6.21:git3
  Linux Kernel 2.6.21 Git4 cpe:2.3:o:linux:linux_kernel:2.6.21:git4
  Linux Kernel 2.6.21 Git5 cpe:2.3:o:linux:linux_kernel:2.6.21:git5
  Linux Kernel 2.6.21 Git6 cpe:2.3:o:linux:linux_kernel:2.6.21:git6
  Linux Kernel 2.6.21 Git7 cpe:2.3:o:linux:linux_kernel:2.6.21:git7
  Linux Kernel 2.6.21 Rc1 cpe:2.3:o:linux:linux_kernel:2.6.21:rc1
  Linux Kernel 2.6.21 Rc2 cpe:2.3:o:linux:linux_kernel:2.6.21:rc2
  Linux Kernel 2.6.21 Rc3 cpe:2.3:o:linux:linux_kernel:2.6.21:rc3
  Linux Kernel 2.6.21 Rc4 cpe:2.3:o:linux:linux_kernel:2.6.21:rc4
  Linux Kernel 2.6.21 Rc5 cpe:2.3:o:linux:linux_kernel:2.6.21:rc5

Configuration #2

    CPE23 From Up To
  Debian Linux 3.1 cpe:2.3:o:debian:debian_linux:3.1
  Debian Linux 4.0 cpe:2.3:o:debian:debian_linux:4.0

Configuration #3

    CPE23 From Up To
  Canonical Ubuntu Linux 6.06 cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts
  Canonical Ubuntu Linux 6.10 cpe:2.3:o:canonical:ubuntu_linux:6.10
  Canonical Ubuntu Linux 7.04 cpe:2.3:o:canonical:ubuntu_linux:7.04