blob: 0c621f59d17574cfe253998d96dabbb274c5985b (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
Candidate: CVE-2007-1734
References:
http://www.securityfocus.com/archive/1/archive/1/463969/100/0/threaded
Description:
The DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in
Linux kernel 2.6.20 and later does not verify the upper bounds of the optlen
value, which allows local users running on certain architectures to read
kernel memory or cause a denial of service (oops), a related issue to CVE-2007-1730
Ubuntu-Description:
Notes:
Bugs: 420875
upstream: released (2.6.20.5, 2.6.21)
linux-2.6: released (2.6.20-1) [bugfix/2.6.20.5]
2.6.18-etch-security: N/A
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.6.12-breezy-security: N/A
2.6.15-dapper-security: N/A
2.6.17-edgy-security: N/A
2.6.20-feisty-security: released (linux-source-2.6.20-16.28)
|
