CVE-2008-1367

Table of Contents

Impact:
Low
Public Date:
2008-03-05
Bugzilla:
437312: CVE-2008-1367 Kernel doesn't clear DF for signal handlers

The MITRE CVE dictionary describes this issue as:

gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmove on x86 and i386, which can prevent the direction flag (DF) from being reset in violation of ABI conventions and cause data to be copied in the wrong direction during signal handling in the Linux kernel, which might allow context-dependent attackers to trigger memory corruption. NOTE: this issue was originally reported for CPU consumption in SBCL.

Find out more about CVE-2008-1367 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (kernel) RHSA-2008:0508 2008-06-25
Red Hat Enterprise Linux 5 (kernel) RHSA-2008:0233 2008-05-07
Red Hat Enterprise Linux 3 (kernel) RHSA-2008:0211 2008-05-07
Last Modified

CVE description copyright © 2017, The MITRE Corporation