blob: 1cb869e362b58e08142dee24f50cb4d19d850183 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
Candidate: CVE-2004-0619
References:
http://marc.theaimsgroup.com/?l=bugtraq&m=108802653409053&w=2
http://www.redhat.com/support/errata/RHSA-2004-549.html
http://www.redhat.com/support/errata/RHSA-2005-283.html
http://www.ciac.org/ciac/bulletins/p-047.shtml
http://www.securityfocus.com/bid/10599
http://secunia.com/advisories/11936
http://xforce.iss.net/xforce/xfdb/16459
Description:
Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820
cryptonet driver allows local users to cause a denial of service (crash)
and possibly execute arbitrary code via a negative add_dsa_buf_bytes
variable, which leads to a buffer overflow.
Notes:
jmm> I've checked 2.6.8, 2.4.27 and 2.6.14, this is not included in the
jmm> stock kernel, only in Red Hat's. I'm marking Woody N/A as well.
Bugs:
upstream: N/A
linux-2.6: N/A
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.4.19-woody-security: N/A
2.4.18-woody-security: N/A
2.4.17-woody-security: N/A
2.4.16-woody-security: N/A
2.4.17-woody-security-hppa: N/A
2.4.17-woody-security-ia64: N/A
|