Candidate: CVE-2005-4639 References: CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15 URL:http://www.securityfocus.com/bid/16142 URL:http://www.frsirt.com/english/advisories/2006/0035 URL:http://secunia.com/advisories/18216 Description: Buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST Frontend/ Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by "reading more than 8 bytes into an 8 byte long array". Notes: jmm> Discovered by Perceval Anichini dannf> Driver wasn't added till after 2.6.8 Bugs: upstream: released (2.6.15) linux-2.6: released (2.6.15-1) 2.6.8-sarge-security: N/A 2.4.27-sarge-security: N/A 2.4.19-woody-security: N/A 2.4.18-woody-security: N/A 2.4.17-woody-security: N/A 2.4.16-woody-security: N/A 2.4.17-woody-security-hppa: N/A 2.4.17-woody-security-ia64: N/A