blob: 05fb39d273480ecc9ab3398ff3419cd01036e446 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
Candidate: CVE-2006-4145
References:
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git;a=commit;h=7127be29378b1230eb8dd8b84f18d6b69c56e959
Description:
Fix possible UDF deadlock and memory corruption
Ubuntu-Description:
The UDF file system does not handle extends larger than 1 GB, but did
not check for this restriction on truncating files. A local user
could exploit this to crash the kernel.
Notes:
dannf> Submitted upstream on 2006.08.27
Bugs:
upstream: released (2.6.17.10), released (2.6.18-rc5)
linux-2.6: released (2.6.17-7)
2.6.8-sarge-security: released (2.6.8-16sarge5) [udf-deadlock.dpatch]
2.4.27-sarge-security: released (2.4.27-10sarge4) [231_udf-deadlock.diff]
2.6.10-hoary-security: released (2.6.10-34.23)
2.6.12-breezy-security: released (2.6.12-10.37)
2.6.15-dapper-security: released (2.6.15-26.47)
2.6.17-edgy: released (2.6.17-10.30)
|