diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2009-05-19 08:48:41 +0000 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2009-05-19 08:48:41 +0000 |
commit | 6d4c0a545277fc983a1f4002d6b5bec5a87abb33 (patch) | |
tree | 645f8f7e134886394209f880bebbedf8dc0e8eb9 /retired/CVE-2008-1673 | |
parent | 4c12c171baefdada55fe266b2c84e4cbf26e867f (diff) |
retire issue
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1378 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired/CVE-2008-1673')
-rw-r--r-- | retired/CVE-2008-1673 | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/retired/CVE-2008-1673 b/retired/CVE-2008-1673 new file mode 100644 index 00000000..ca7c0636 --- /dev/null +++ b/retired/CVE-2008-1673 @@ -0,0 +1,24 @@ +Candidate: CVE-2008-1673 +Description: + The asn1 implementation in (a) the Linux kernel 2.4 before 2.4.36.6 and 2.6 + before 2.6.25.5, as used in the cifs and ip_nat_snmp_basic modules; and (b) + the gxsnmp package; does not properly validate length values during + decoding of ASN.1 BER data, which allows remote attackers to cause a denial + of service (crash) or execute arbitrary code via (1) a length greater than + the working buffer, which can lead to an unspecified overflow; (2) an oid + length of zero, which can lead to an off-by-one error; or (3) an indefinite + length for a primitive encoding. +References: +Ubuntu-Description: +Notes: + kees> linux-2.6: ddb2c43594f22843e9f3153da151deaba1a834c5 +Bugs: +upstream: released (2.6.26) +linux-2.6: released (2.6.26-1) +2.6.18-etch-security: released (2.6.18.dfsg.1-22etch2) [bugfix/asn1-ber-decoding-checks.patch, bugfix/cifs-fix-compiler-warning.patch, bugfix/netfilter-nf_nat_snmp_basic-fix-range-check.patch] +2.6.24-etch-security: released (2.6.24-6~etchnhalf.5) [bugfix/asn1-ber-decoding-checks.patch, bugfix/cifs-fix-compiler-warning.patch, bugfix/netfilter-nf_nat_snmp_basic-fix-range-check.patch] +2.6.26-lenny-security: N/A +2.6.15-dapper-security: released (2.6.15-52.69) +2.6.20-feisty-security: released (2.6.20-17.37) +2.6.22-gutsy-security: released (2.6.22-15.56) +2.6.24-hardy-security: released (2.6.24-19.36) |