cvelistv5 - cve-2008-1594

cve-2008-1594

Vulnerability from cvelistv5

Published

2008-03-31 23:00

Modified

2024-08-07 08:24

Severity ?

Summary

The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.

References

URL	Tags
cve@mitre.org	http://securitytracker.com/id?1019606
cve@mitre.org	http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
cve@mitre.org	http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
cve@mitre.org	http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
cve@mitre.org	http://www.securityfocus.com/bid/28467	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2008/0865
cve@mitre.org	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
cve@mitre.org	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
cve@mitre.org	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1019606
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/28467	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/0865
af854a3a-2127-422b-91ae-364da2661108	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
af854a3a-2127-422b-91ae-364da2661108	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
af854a3a-2127-422b-91ae-364da2661108	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-07T08:24:42.913Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
               },
               {
                  name: "28467",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/28467",
               },
               {
                  name: "1019606",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://securitytracker.com/id?1019606",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
               },
               {
                  name: "IZ04953",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_AIXAPAR",
                     "x_transferred",
                  ],
                  url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
               },
               {
                  name: "IZ04946",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_AIXAPAR",
                     "x_transferred",
                  ],
                  url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
               },
               {
                  name: "oval:org.mitre.oval:def:5434",
                  tags: [
                     "vdb-entry",
                     "signature",
                     "x_refsource_OVAL",
                     "x_transferred",
                  ],
                  url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
               },
               {
                  name: "IZ05246",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_AIXAPAR",
                     "x_transferred",
                  ],
                  url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
               },
               {
                  name: "ADV-2008-0865",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2008/0865",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2008-03-11T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2017-09-28T12:57:01",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
            },
            {
               name: "28467",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/28467",
            },
            {
               name: "1019606",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://securitytracker.com/id?1019606",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
            },
            {
               name: "IZ04953",
               tags: [
                  "vendor-advisory",
                  "x_refsource_AIXAPAR",
               ],
               url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
            },
            {
               name: "IZ04946",
               tags: [
                  "vendor-advisory",
                  "x_refsource_AIXAPAR",
               ],
               url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
            },
            {
               name: "oval:org.mitre.oval:def:5434",
               tags: [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
               ],
               url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
            },
            {
               name: "IZ05246",
               tags: [
                  "vendor-advisory",
                  "x_refsource_AIXAPAR",
               ],
               url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
            },
            {
               name: "ADV-2008-0865",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2008/0865",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2008-1594",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
                     refsource: "CONFIRM",
                     url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
                  },
                  {
                     name: "28467",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/28467",
                  },
                  {
                     name: "1019606",
                     refsource: "SECTRACK",
                     url: "http://securitytracker.com/id?1019606",
                  },
                  {
                     name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
                     refsource: "CONFIRM",
                     url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
                  },
                  {
                     name: "IZ04953",
                     refsource: "AIXAPAR",
                     url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
                  },
                  {
                     name: "IZ04946",
                     refsource: "AIXAPAR",
                     url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
                  },
                  {
                     name: "oval:org.mitre.oval:def:5434",
                     refsource: "OVAL",
                     url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
                  },
                  {
                     name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
                     refsource: "CONFIRM",
                     url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
                  },
                  {
                     name: "IZ05246",
                     refsource: "AIXAPAR",
                     url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
                  },
                  {
                     name: "ADV-2008-0865",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2008/0865",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2008-1594",
      datePublished: "2008-03-31T23:00:00",
      dateReserved: "2008-03-31T00:00:00",
      dateUpdated: "2024-08-07T08:24:42.913Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2008-1594\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2008-03-31T23:44:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.\"},{\"lang\":\"es\",\"value\":\"El kernel de IBM AIX 5.2 y 5.3 no manipula adecuadamente el redimensionamiento de sistemas de ficheros JFS2 en grupos de volúmenes concurrentes extendidos por múltiples nodos, lo que permite a usuarios locales de un nodo provocar una denegación de servicio (caída de nodo remoto) utilizando chfs o lreducelv para reducir el tamaño de un sistema de ficheros.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":4.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17EECCCB-D7D1-439A-9985-8FAE8B44487B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA8DDF4A-1C5D-4CB1-95B3-69EAE6572507\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD518B94-9CD7-4C45-8766-578CF427B4CF\"}]}]}],\"references\":[{\"url\":\"http://securitytracker.com/id?1019606\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ibm.com/support/docview.wss?uid=isg1IZ04946\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ibm.com/support/docview.wss?uid=isg1IZ04953\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ibm.com/support/docview.wss?uid=isg1IZ05246\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/28467\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2008/0865\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1019606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ibm.com/support/docview.wss?uid=isg1IZ04946\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ibm.com/support/docview.wss?uid=isg1IZ04953\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ibm.com/support/docview.wss?uid=isg1IZ05246\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/28467\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2008/0865\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
   },
}

gsd-2008-1594

Vulnerability from gsd

Modified

2023-12-13 01:23

Details

Aliases

CVE-2008-1594

Aliases

CVE-2008-1594

JSON

To clipboard

{
   GSD: {
      alias: "CVE-2008-1594",
      description: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
      id: "GSD-2008-1594",
   },
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2008-1594",
         ],
         details: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
         id: "GSD-2008-1594",
         modified: "2023-12-13T01:23:03.328558Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "cve@mitre.org",
            ID: "CVE-2008-1594",
            STATE: "PUBLIC",
         },
         affects: {
            vendor: {
               vendor_data: [
                  {
                     product: {
                        product_data: [
                           {
                              product_name: "n/a",
                              version: {
                                 version_data: [
                                    {
                                       version_value: "n/a",
                                    },
                                 ],
                              },
                           },
                        ],
                     },
                     vendor_name: "n/a",
                  },
               ],
            },
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
               },
            ],
         },
         problemtype: {
            problemtype_data: [
               {
                  description: [
                     {
                        lang: "eng",
                        value: "n/a",
                     },
                  ],
               },
            ],
         },
         references: {
            reference_data: [
               {
                  name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
                  refsource: "CONFIRM",
                  url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
               },
               {
                  name: "28467",
                  refsource: "BID",
                  url: "http://www.securityfocus.com/bid/28467",
               },
               {
                  name: "1019606",
                  refsource: "SECTRACK",
                  url: "http://securitytracker.com/id?1019606",
               },
               {
                  name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
                  refsource: "CONFIRM",
                  url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
               },
               {
                  name: "IZ04953",
                  refsource: "AIXAPAR",
                  url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
               },
               {
                  name: "IZ04946",
                  refsource: "AIXAPAR",
                  url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
               },
               {
                  name: "oval:org.mitre.oval:def:5434",
                  refsource: "OVAL",
                  url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
               },
               {
                  name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
                  refsource: "CONFIRM",
                  url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
               },
               {
                  name: "IZ05246",
                  refsource: "AIXAPAR",
                  url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
               },
               {
                  name: "ADV-2008-0865",
                  refsource: "VUPEN",
                  url: "http://www.vupen.com/english/advisories/2008/0865",
               },
            ],
         },
      },
      "nvd.nist.gov": {
         configurations: {
            CVE_data_version: "4.0",
            nodes: [
               {
                  children: [],
                  cpe_match: [
                     {
                        cpe23Uri: "cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                     {
                        cpe23Uri: "cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
         cve: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2008-1594",
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "en",
                     value: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "en",
                           value: "NVD-CWE-Other",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
                  },
                  {
                     name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
                  },
                  {
                     name: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
                  },
                  {
                     name: "IZ04946",
                     refsource: "AIXAPAR",
                     tags: [],
                     url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
                  },
                  {
                     name: "IZ04953",
                     refsource: "AIXAPAR",
                     tags: [],
                     url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
                  },
                  {
                     name: "IZ05246",
                     refsource: "AIXAPAR",
                     tags: [],
                     url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
                  },
                  {
                     name: "28467",
                     refsource: "BID",
                     tags: [
                        "Patch",
                     ],
                     url: "http://www.securityfocus.com/bid/28467",
                  },
                  {
                     name: "1019606",
                     refsource: "SECTRACK",
                     tags: [],
                     url: "http://securitytracker.com/id?1019606",
                  },
                  {
                     name: "ADV-2008-0865",
                     refsource: "VUPEN",
                     tags: [],
                     url: "http://www.vupen.com/english/advisories/2008/0865",
                  },
                  {
                     name: "oval:org.mitre.oval:def:5434",
                     refsource: "OVAL",
                     tags: [],
                     url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
                  },
               ],
            },
         },
         impact: {
            baseMetricV2: {
               cvssV2: {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  availabilityImpact: "COMPLETE",
                  baseScore: 4.9,
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:C",
                  version: "2.0",
               },
               exploitabilityScore: 3.9,
               impactScore: 6.9,
               obtainAllPrivilege: false,
               obtainOtherPrivilege: false,
               obtainUserPrivilege: false,
               severity: "MEDIUM",
               userInteractionRequired: false,
            },
         },
         lastModifiedDate: "2017-09-29T01:30Z",
         publishedDate: "2008-03-31T23:44Z",
      },
   },
}

ghsa-9mx8-5rcr-64g4

Vulnerability from github

Published

2022-05-01 23:41

Modified

2022-05-01 23:41

Details

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2008-1594",
   ],
   database_specific: {
      cwe_ids: [],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2008-03-31T23:44:00Z",
      severity: "MODERATE",
   },
   details: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
   id: "GHSA-9mx8-5rcr-64g4",
   modified: "2022-05-01T23:41:39Z",
   published: "2022-05-01T23:41:39Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2008-1594",
      },
      {
         type: "WEB",
         url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
      },
      {
         type: "WEB",
         url: "http://securitytracker.com/id?1019606",
      },
      {
         type: "WEB",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
      },
      {
         type: "WEB",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
      },
      {
         type: "WEB",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/bid/28467",
      },
      {
         type: "WEB",
         url: "http://www.vupen.com/english/advisories/2008/0865",
      },
      {
         type: "WEB",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
      },
      {
         type: "WEB",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
      },
      {
         type: "WEB",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
      },
   ],
   schema_version: "1.4.0",
   severity: [],
}

fkie_cve-2008-1594

Vulnerability from fkie_nvd

Published

2008-03-31 23:44

Modified

2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://securitytracker.com/id?1019606
cve@mitre.org	http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
cve@mitre.org	http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
cve@mitre.org	http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
cve@mitre.org	http://www.securityfocus.com/bid/28467	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2008/0865
cve@mitre.org	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
cve@mitre.org	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
cve@mitre.org	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1019606
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/28467	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/0865
af854a3a-2127-422b-91ae-364da2661108	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
af854a3a-2127-422b-91ae-364da2661108	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
af854a3a-2127-422b-91ae-364da2661108	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434

Impacted products

Vendor	Product	Version
ibm	aix	5.2
ibm	aix	5.3
ibm	aix	6.1

JSON

To clipboard

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*",
                     matchCriteriaId: "17EECCCB-D7D1-439A-9985-8FAE8B44487B",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*",
                     matchCriteriaId: "EA8DDF4A-1C5D-4CB1-95B3-69EAE6572507",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*",
                     matchCriteriaId: "FD518B94-9CD7-4C45-8766-578CF427B4CF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.",
      },
      {
         lang: "es",
         value: "El kernel de IBM AIX 5.2 y 5.3 no manipula adecuadamente el redimensionamiento de sistemas de ficheros JFS2 en grupos de volúmenes concurrentes extendidos por múltiples nodos, lo que permite a usuarios locales de un nodo provocar una denegación de servicio (caída de nodo remoto) utilizando chfs o lreducelv para reducir el tamaño de un sistema de ficheros.",
      },
   ],
   id: "CVE-2008-1594",
   lastModified: "2025-04-09T00:30:58.490",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 4.9,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
   },
   published: "2008-03-31T23:44:00.000",
   references: [
      {
         source: "cve@mitre.org",
         url: "http://securitytracker.com/id?1019606",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
         ],
         url: "http://www.securityfocus.com/bid/28467",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2008/0865",
      },
      {
         source: "cve@mitre.org",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
      },
      {
         source: "cve@mitre.org",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
      },
      {
         source: "cve@mitre.org",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
      },
      {
         source: "cve@mitre.org",
         url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://securitytracker.com/id?1019606",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04946",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ04953",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.ibm.com/support/docview.wss?uid=isg1IZ05246",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
         ],
         url: "http://www.securityfocus.com/bid/28467",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2008/0865",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434",
      },
   ],
   sourceIdentifier: "cve@mitre.org",
   vulnStatus: "Deferred",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2008-1594

Vulnerability from cvelistv5

gsd-2008-1594

Vulnerability from gsd

ghsa-9mx8-5rcr-64g4

Vulnerability from github

fkie_cve-2008-1594

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature