What is CVE-2009-2695?

CVE-2009-2695 is a High severity Linux kernel vulnerability with a CVSS score of 7.2 out of 10, classified as a Buffer Overflow flaw (CWE-119). CVE-2009-2695 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2009-2695?

CVE-2009-2695 has a CVSS score of 7.2 out of 10, rated High severity. The vector string is AV:L/AC:L/Au:N/C:C/I:C/A:C.

Is there a patch available for CVE-2009-2695?

No patch is currently available for CVE-2009-2695. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2009-2695 actively exploited?

CVE-2009-2695 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is Buffer Overflow (CWE-119)?

The product performs operations on a memory buffer but reads or writes outside its intended boundaries. See MITRE CWE for full details: https://cwe.mitre.org/data/definitions/119.html

CVE-2009-2695

High

The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.

Package Linux Kernel

Published 2009-08-28

Last modified 2026-04-23

CVSS version 2.0

Patch available

Awaiting data

CVSS 2.0 score

7.2

out of 10

High

Attack Vector

Local

Attack Complexity

Low

Privileges Required

User Interaction

Scope

Confidentiality

Low

Integrity

Availability

Vector string

AV:L/AC:L/Au:N/C:C/I:C/A:C

Weakness type

CWE-119

CVE-2009-2695 is a Buffer Overflow vulnerability

What is Buffer Overflow?

The product performs operations on a memory buffer but reads or writes outside its intended boundaries. Learn more on MITRE CWE

References

The following references provide additional information about CVE-2009-2695 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Danwalsh
http://danwalsh.livejournal.com/30084.html

Exploit
Eparis
http://eparis.livejournal.com/606.html
Red Hat
http://kbase.redhat.com/faq/docs/DOC-18042
Lists
http://lists.vmware.com/pipermail/security-announce/2010/000082.html
Kernel.org
http://patchwork.kernel.org/patch/36539/
Kernel.org
http://patchwork.kernel.org/patch/36540/
Kernel.org
http://patchwork.kernel.org/patch/36650/
Secunia
http://secunia.com/advisories/36501

Vendor Advisory
Secunia
http://secunia.com/advisories/37105
Secunia
http://secunia.com/advisories/38794
Secunia
http://secunia.com/advisories/38834
Thread
http://thread.gmane.org/gmane.linux.kernel.lsm/9075
Twitter
http://twitter.com/spendergrsec/statuses/3303390960
Debian Security
http://www.debian.org/security/2010/dsa-2005
Kernel.org
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7
Openwall
http://www.openwall.com/lists/oss-security/2009/08/17/4
Red Hat
http://www.redhat.com/support/errata/RHSA-2009-1672.html
Ubuntu Security
http://www.ubuntu.com/usn/USN-852-1
Vupen
http://www.vupen.com/english/advisories/2010/0528
Red Hat
https://bugzilla.redhat.com/show_bug.cgi?id=511143
Red Hat
https://bugzilla.redhat.com/show_bug.cgi?id=517830
Oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144
Oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882
Red Hat
https://rhn.redhat.com/errata/RHSA-2009-1540.html
Red Hat
https://rhn.redhat.com/errata/RHSA-2009-1548.html
Red Hat
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html
Kernel patch commit
http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6
Patch
Kernel patch commit
http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=7c73875e7dda627040b12c19b01db634fa7f0fd1
Patch
Kernel patch commit
http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=84336d1a77ccd2c06a730ddd38e695c2324a7386
Patch

11 patch commits total View all on NVD

Details

CVE ID CVE-2009-2695

Severity High

CVSS score 7.2 / 10

CVSS version 2.0

Published 2009-08-28

Modified 2026-04-23

KEV No

Patch Awaiting data

Package linux

Frequently asked questions

What is CVE-2009-2695?

CVE-2009-2695 is a High severity Linux kernel vulnerability with a CVSS score of 7.2 out of 10 , classified as a Buffer Overflow flaw (CWE-119) . CVE-2009-2695 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
What is the CVSS score for CVE-2009-2695?

CVE-2009-2695 has a CVSS score of 7.2 out of 10, rated High severity (CVSS 2.0). The vector string is AV:L/AC:L/Au:N/C:C/I:C/A:C.
Is there a patch available for CVE-2009-2695?

No patch is currently available for CVE-2009-2695. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
Is CVE-2009-2695 actively exploited?

No — CVE-2009-2695 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
What is Buffer Overflow (CWE-119)?

The product performs operations on a memory buffer but reads or writes outside its intended boundaries. View CWE-119 on MITRE CWE →