CVE-2009-0746

EPSS 0.27% · P50 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0746

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The make_indexed_dir function in fs/ext4/namei.c in the Linux kernel 2.6.27 before 2.6.27.19 and 2.6.28 before 2.6.28.7 does not validate a certain rec_len field, which allows local users to cause a denial of service (OOPS) by attempting to mount a crafted ext4 filesystem.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

linux kernel ’fs/ext4/namei.c’输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux是一款开放源码的Unix风格(Unix alike)的操作系统(OS),在原代码级上兼容绝大部分Unix标准(指的是IEEE POSIX,System V,BSD)，是一个支持多用户, 多进程,多线程,实时性较好的功能强大而稳定的操作系统。 Linux kernel 2.6.27.19版本之前的版本2.6.27以及2.6.28.7之前的版本2.6.28中的fs/ext4/namei.c中的make_indexed_dir函数没有校验某个rec_len字段，这会允许本地用户通过尝试固定一个特制的e

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0746

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0746

Please Login to view more intelligence information

http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlx_refsource_CONFIRM
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e6b8bc09ba2075cd91fbffefcd2778b1a00bd76fx_refsource_CONFIRM
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.19x_refsource_CONFIRM
http://bugzilla.kernel.org/show_bug.cgi?id=12430x_refsource_CONFIRM
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.7x_refsource_CONFIRM
http://osvdb.org/52202vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/36562third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/37471third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/34394third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2009/dsa-1749vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/usn-751-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2009/3316vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2009/0509vdb-entryx_refsource_VUPEN
http://rhn.redhat.com/errata/RHSA-2009-1243.htmlvendor-advisoryx_refsource_REDHAT
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8039vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10342vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/48872vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/507985/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-0746

Same Patch Batch · n/a · 2009-02-27 · 45 CVEs total

CVE-2008-6320		CF Shopkart cf_shopkart 'index.cfm'SQL注入漏洞
CVE-2008-6323		Cfmsource CF_Auction 'forummessages.cfm' SQL注入漏洞
CVE-2008-6322		CFMSource CFMBlog 'index.cfm' SQL注入漏洞
CVE-2008-6324		Cfmsource CF_Forum 'forummessages.cfm' SQL注入漏洞
CVE-2008-6327		Manzovi ProQuiz 'index.php' SQL注入漏洞
CVE-2008-6328		Butterfly Organizer 'view.php'多个SQL注入和跨站脚本攻击漏洞
CVE-2008-6308		PunBB Private Messaging System 多个目录遍历漏洞
CVE-2008-6309		W3matter AskPert 'index.php' SQL注入漏洞
CVE-2008-6310		W3matter RevSense 'index.php' SQL注入漏洞
CVE-2008-6326		Simple Customer 'login.phpl' SQL注入漏洞
CVE-2008-6321		CF Shopkart 'cfshopkart52.mdb'敏感信息泄露漏洞
CVE-2008-6319		CFMSource CF_Calendar 'calendarevent.cfm' SQL注入漏洞
CVE-2008-6318		PHPmyGallery '_conf/_php-core/common-tpl-vars.php' 远程文件漏洞
CVE-2008-6317		PHPmyGallery '_conf/core/common-tpl-vars.php' conf[lang]参数目录遍历漏洞
CVE-2008-6316		PHPmyGallery '_conf/core/common-tpl-vars.php' lang参数目录遍历漏洞
CVE-2008-6315		PHPmyGallery '_conf/core/common-tpl-vars.php'远程文件包含漏洞
CVE-2008-6314		phpBB Tag Board模块 'tag_board.php' SQL注入漏洞
CVE-2008-6313		phpAddEdit 'addedit-render.php' 目录遍历漏洞
CVE-2008-6312		Manzovi ProQuiz 'index.php' SQL注入漏洞
CVE-2008-6311		Butterfly Organizer 'view.php' SQL注入漏洞

Showing top 20 of 45 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-0746

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-0746

I. Basic Information for CVE-2009-0746

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0746

III. Intelligence Information for CVE-2009-0746

Same Patch Batch · n/a · 2009-02-27 · 45 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-0746

Leave a comment