Lucene search

K
osvGoogleOSV:DSA-1731-1
HistoryMar 02, 2009 - 12:00 a.m.

ndiswrapper - arbitrary code execution vulnerability

2009-03-0200:00:00
Google
osv.dev
7

Anders Kaseorg discovered that ndiswrapper suffers from buffer overflows
via specially crafted wireless network traffic, due to incorrectly
handling long ESSIDs. This could lead to the execution of arbitrary
code.

For the oldstable distribution (etch), this problem has been fixed in
version 1.28-1+etch1.

For the stable distribution (lenny), this problem has been fixed in
version 1.53-2, which was already included in the lenny release.

For the testing distribution (squeeze) and the unstable distribution
(sid), this problem has been fixed in version 1.53-2.

CPENameOperatorVersion
ndiswrappereq1.28-1