blob: 85df5c2b1b23a5041677680f9d2dcf8536e4fe26 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
Candidate: CVE-2009-1897
Description:
Null pointer dereference bypass in tun/tap
References:
http://seclists.org/fulldisclosure/2009/Jul/0241.html
http://grsecurity.net/~spender/cheddar_bay.tgz
Ubuntu-Description:
Notes:
According to description, vulnerability introduced in commit 33dccbb050bbe35b88ca8cf1228dcf3e4d4b3554, so only 2.6.30 affected.
Bugs: 537409
upstream: released (2.6.31-rc3) [3c8a9c63d5fd738c261bd0ceece04d9c8357ca13]
linux-2.6: released (2.6.30-3) [bugfix/all/tun-tap-fix-crash-on-open-and-poll.patch]
2.6.18-etch-security: N/A "introduced after 2.6.29"
2.6.24-etch-security: N/A "introduced after 2.6.29"
2.6.26-lenny-security: N/A "introduced after 2.6.29"
2.6.15-dapper-security:
2.6.22-gutsy-security:
2.6.24-hardy-security:
2.6.27-intrepid-security:
|