Unrated severityNVD Advisory· Published May 12, 2008· Updated Jun 16, 2026
CVE-2008-2148
CVE-2008-2148
Description
The utimensat system call (sys_utimensat) in Linux kernel 2.6.22 and other versions before 2.6.25.3 does not check file permissions when certain UTIME_NOW and UTIME_OMIT combinations are used, which allows local users to modify file times of arbitrary files, possibly leading to a denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*+ 22 more
- cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.10:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.11:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.12:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.13:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.14:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.15:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.16:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.17:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.18:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.19:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.20:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.21:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.22.9:*:*:*:*:*:*:*
- (no CPE)range: <2.6.25.3
Patches
Vulnerability mechanics
References
15- secunia.com/advisories/30198nvdVendor Advisory
- secunia.com/advisories/30241nvdVendor Advisory
- secunia.com/advisories/30818nvdVendor Advisory
- secunia.com/advisories/31107nvdVendor Advisory
- secunia.com/advisories/31628nvdVendor Advisory
- www.vupen.com/english/advisories/2008/1543/referencesnvdVendor Advisory
- git.kernel.orgnvd
- kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.3nvd
- lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.htmlnvd
- wiki.rpath.com/wiki/Advisories:rPSA-2008-0169nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2008-0585.htmlnvd
- www.securityfocus.com/bid/29134nvd
- www.ubuntu.com/usn/usn-625-1nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/42342nvd
News mentions
0No linked articles in our index yet.