CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
10.1%
drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:rc8:*:*:*:*:*:* |
linux | linux_kernel | 2.6.0 | cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.1 | cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.2 | cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.3 | cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.4 | cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.5 | cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.6 | cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.7 | cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.8 | cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:* |
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8c0c0cc2d9f4c523fde04bdfe41e4380dec8ee54
lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.html
lists.opensuse.org/opensuse-security-announce/2010-01/msg00005.html
lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
patchwork.kernel.org/patch/66747/
secunia.com/advisories/38017
secunia.com/advisories/38276
support.avaya.com/css/P8/documents/100073666
www.debian.org/security/2010/dsa-2005
www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.32-git9.log
www.openwall.com/lists/oss-security/2009/12/15/1
www.securityfocus.com/bid/37339
bugzilla.redhat.com/show_bug.cgi?id=547236
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7376
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9527
rhn.redhat.com/errata/RHSA-2010-0046.html
rhn.redhat.com/errata/RHSA-2010-0095.html