Candidate: CVE-2007-5938 Description: The iwl_set_rate function in compatible/iwl3945-base.c in iwlwifi 1.1.21 and earlier dereferences an iwl_get_hw_mode return value without checking for NULL, which might allow remote attackers to cause a denial of service (kernel panic) via unspecified vectors during module initialization. References: http://article.gmane.org/gmane.linux.drivers.ipw3945.devel/1618 http://bugs.gentoo.org/show_bug.cgi?id=199209 Ubuntu-Description: Notes: jmm> c4ba9621f4f241f8c4d4f620ad4257af59d21f3e Bugs: upstream: released (2.6.24-rc4) linux-2.6: released (2.6.23-2) 2.6.18-etch-security: N/A 2.6.8-sarge-security: N/A 2.4.27-sarge-security: N/A 2.6.15-dapper-security: N/A 2.6.17-edgy-security: ignored (EOL) 2.6.20-feisty-security: N/A 2.6.22-gutsy-security: N/A 2.6.24-hardy-security: N/A