Lucene search

GoogleOSV:DSA-1699-1

HistoryJan 11, 2009 - 12:00 a.m.

zaptel - privilege escalation

2009-01-1100:00:00

Google

osv.dev

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

21.6%

JSON

An array index error in zaptel, a set of drivers for telephony hardware,
could allow users to crash the system or escalate their privileges by
overwriting kernel memory (CVE-2008-5396).

For the stable distribution (etch), this problem has been fixed in version
1.2.11.dfsg-1+etch1.

For the unstable distribution (sid) and the testing distribution
(lenny), this problem has been fixed in version 1.4.11~dfsg-3.

We recommend that you upgrade your zaptel package.

CPENameOperatorVersion
zapteleq1:1.2.11.dfsg-1

CPE	Name	Operator	Version
	zaptel	eq	1:1.2.11.dfsg-1

References

www.debian.org/security/2009/dsa-1699

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

21.6%

JSON

Related for OSV:DSA-1699-1