blob: 1fb9348bb80a5a3293e7488ba6d15056cef17c0b (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
Candidate: CVE-2005-4639
References:
CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15
URL:http://www.securityfocus.com/bid/16142
URL:http://www.frsirt.com/english/advisories/2006/0035
URL:http://secunia.com/advisories/18216
Description:
Buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST Frontend/
Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows
local users to cause a denial of service (crash) and possibly execute
arbitrary code by "reading more than 8 bytes into an 8 byte long array".
Notes:
jmm> Discovered by Perceval Anichini
dannf> Driver wasn't added till after 2.6.8
Bugs:
upstream: released (2.6.15)
linux-2.6: released (2.6.15-1)
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.4.19-woody-security: N/A
2.4.18-woody-security: N/A
2.4.17-woody-security: N/A
2.4.16-woody-security: N/A
2.4.17-woody-security-hppa: N/A
2.4.17-woody-security-ia64: N/A
|