Upstream information

CVE-2009-4005 at MITRE

Description

The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 7.2
Vector AV:L/AC:L/Au:N/C:C/I:C/A:C
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
SUSE Bugzilla entry: 557683 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server for SAP Applications 11
  • ext4dev-kmp-default >= 0_2.6.27.42_0.1-7.1.24
  • ext4dev-kmp-pae >= 0_2.6.27.42_0.1-7.1.24
  • ext4dev-kmp-ppc64 >= 0_2.6.27.42_0.1-7.1.24
  • ext4dev-kmp-vmi >= 0_2.6.27.42_0.1-7.1.24
  • ext4dev-kmp-xen >= 0_2.6.27.42_0.1-7.1.24
  • iscsitarget-kmp-default >= 0.4.15_2.6.27.54_0.2-94.14.8
  • kernel-default >= 2.6.27.42-0.1.1
  • kernel-default-base >= 2.6.27.42-0.1.1
  • kernel-default-man >= 2.6.27.42-0.1.1
  • kernel-kdump >= 2.6.27.42-0.1.1
  • kernel-pae >= 2.6.27.42-0.1.1
  • kernel-pae-base >= 2.6.27.42-0.1.1
  • kernel-ppc64 >= 2.6.27.42-0.1.1
  • kernel-ppc64-base >= 2.6.27.42-0.1.1
  • kernel-source >= 2.6.27.42-0.1.1
  • kernel-syms >= 2.6.27.42-0.1.1
  • kernel-vmi >= 2.6.27.42-0.1.1
  • kernel-vmi-base >= 2.6.27.42-0.1.1
  • kernel-xen >= 2.6.27.42-0.1.1
  • kernel-xen-base >= 2.6.27.42-0.1.1
  • oracleasm-kmp-default >= 2.0.5_2.6.27.54_0.2-7.9.1
 Patchnames:
slessp0-kernel

SUSE Timeline for this CVE

CVE page created: Tue Jul 9 17:17:27 2013
CVE page last modified: Mon Dec 12 17:40:46 2022