CVE-2008-2812 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2008-2812
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2812

Description: The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/43687 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-637-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00012.html http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00007.html SAID Secunia Advisory: SA31341 Secunia Advisory: SA31202 Secunia Advisory: SA31229 Secunia Advisory: SA31614 Secunia Advisory: SA31685 Secunia Advisory: SA31551 Secunia Advisory: SA31048 Secunia Advisory: SA32759 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0665.html http://www.redhat.com/support/errata/RHSA-2008-0612.html MLIST http://www.openwall.com/lists/oss-security/2008/07/03/2 DEBIAN http://www.debian.org/security/2008/dsa-1630 CONFIRM http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.10 http://support.avaya.com/elmodocs2/security/ASA-2008-365.htm http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.25.y.git;a=commitdiff;h=2a739dd53ad7ee010ae6e155438507f329dce788 BID 30076

Return to the previous page.