CVE-2008-4410

Publication date 3 October 2008

Last updated 24 July 2024

The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the Virtual Machine Interface (VMI) in the Linux kernel 2.6.26.5 invokes write_idt_entry where write_ldt_entry was intended, which allows local users to cause a denial of service (persistent application failure) via crafted function calls, related to the Java Runtime Environment (JRE) experiencing improper LDT selector state, a different vulnerability than CVE-2008-3247.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	8.04 LTS hardy	Not affected
	7.10 gutsy	Not in release
	7.04 feisty	Not in release
	6.06 LTS dapper	Not in release
linux-source-2.6.15	8.04 LTS hardy	Not in release
	7.10 gutsy	Not in release
	7.04 feisty	Not in release
	6.06 LTS dapper	Not affected
linux-source-2.6.20	8.04 LTS hardy	Not in release
	7.10 gutsy	Not in release
	7.04 feisty	Not affected
	6.06 LTS dapper	Not in release
linux-source-2.6.22	8.04 LTS hardy	Not in release
	7.10 gutsy	Not affected
	7.04 feisty	Not in release
	6.06 LTS dapper	Not in release

References

Other references

https://www.cve.org/CVERecord?id=CVE-2008-4410