What is CVE-2007-6063?

CVE-2007-6063 is a Medium severity Linux kernel vulnerability with a CVSS score of 6.9 out of 10, classified as a Buffer Overflow flaw (CWE-119). CVE-2007-6063 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2007-6063?

CVE-2007-6063 has a CVSS score of 6.9 out of 10, rated Medium severity. The vector string is AV:L/AC:M/Au:N/C:C/I:C/A:C.

Is there a patch available for CVE-2007-6063?

No patch is currently available for CVE-2007-6063. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2007-6063 actively exploited?

CVE-2007-6063 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is Buffer Overflow (CWE-119)?

The product performs operations on a memory buffer but reads or writes outside its intended boundaries. See MITRE CWE for full details: https://cwe.mitre.org/data/definitions/119.html

CVE-2007-6063

Medium

Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux kernel 2.6.23 allows local users to have an unknown impact via a crafted argument to the isdn_ioctl function.

Package Linux Kernel

Published 2007-11-21

Last modified 2026-04-23

CVSS version 2.0

Patch available

Awaiting data

CVSS 2.0 score

6.9

out of 10

Medium

Attack Vector

Local

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Vector string

AV:L/AC:M/Au:N/C:C/I:C/A:C

Weakness type

CWE-119

CVE-2007-6063 is a Buffer Overflow vulnerability

What is Buffer Overflow?

The product performs operations on a memory buffer but reads or writes outside its intended boundaries. Learn more on MITRE CWE

References

The following references provide additional information about CVE-2007-6063 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel.org
http://bugzilla.kernel.org/show_bug.cgi?id=9416
Lists
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html
Lists
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html
Red Hat
http://rhn.redhat.com/errata/RHSA-2008-0055.html
Secunia
http://secunia.com/advisories/27842
Secunia
http://secunia.com/advisories/27912
Secunia
http://secunia.com/advisories/28141
Secunia
http://secunia.com/advisories/28706
Secunia
http://secunia.com/advisories/28748
Secunia
http://secunia.com/advisories/28806
Secunia
http://secunia.com/advisories/28971
Secunia
http://secunia.com/advisories/29058
Secunia
http://secunia.com/advisories/29236
Secunia
http://secunia.com/advisories/33201
Secunia
http://secunia.com/advisories/33280
Debian Security
http://www.debian.org/security/2007/dsa-1436
Debian Security
http://www.debian.org/security/2008/dsa-1503
Debian Security
http://www.debian.org/security/2008/dsa-1504
Mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:008
Mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112
Red Hat
http://www.redhat.com/support/errata/RHSA-2008-0154.html
Red Hat
http://www.redhat.com/support/errata/RHSA-2008-0787.html
Red Hat
http://www.redhat.com/support/errata/RHSA-2008-0973.html
Securityfocus
http://www.securityfocus.com/bid/26605
Ubuntu Security
http://www.ubuntu.com/usn/usn-574-1
Ubuntu Security
http://www.ubuntu.com/usn/usn-578-1
Vupen
http://www.vupen.com/english/advisories/2007/4046
Oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6514
Oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9846

Details

CVE ID CVE-2007-6063

Severity Medium

CVSS score 6.9 / 10

CVSS version 2.0

Published 2007-11-21

Modified 2026-04-23

KEV No

Patch Awaiting data

Package linux

Frequently asked questions

What is CVE-2007-6063?

CVE-2007-6063 is a Medium severity Linux kernel vulnerability with a CVSS score of 6.9 out of 10 , classified as a Buffer Overflow flaw (CWE-119) . CVE-2007-6063 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
What is the CVSS score for CVE-2007-6063?

CVE-2007-6063 has a CVSS score of 6.9 out of 10, rated Medium severity (CVSS 2.0). The vector string is AV:L/AC:M/Au:N/C:C/I:C/A:C.
Is there a patch available for CVE-2007-6063?

No patch is currently available for CVE-2007-6063. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
Is CVE-2007-6063 actively exploited?

No — CVE-2007-6063 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
What is Buffer Overflow (CWE-119)?

The product performs operations on a memory buffer but reads or writes outside its intended boundaries. View CWE-119 on MITRE CWE →