4 matches found
SUSE CVE-2005-3273
The rosertioctl function in roseroute.c for Radionet Open Source Environment ROSE in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats...
VMSA-2007-0005:Updated Service Console packages (XFree86, UP and SMP kernels, Kerberos libraries) resolve security issues.
VMSA-2007-0005 Updated Service Console packages XFree86, UP and SMP kernels, Kerberos libraries resolve security issues. VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMSA-2007-0005 VMware Security AdvisorySynopsis: Updated Service Console packages XFree86, UP and SMP kernels,...
[SECURITY] [DSA 922-1] New Linux 2.6.8 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 922-1 [email protected] http://www.debian.org/security/ Martin Schulze December 14th, 2005 http://www.debian.org/security/faq -...
CVE-2005-3273
CVE-2005-3273 affects the ROSE (rose) packet router ioctl in the Linux kernel (ROSE code in rose_route.c) for 2.6 kernels before 2.6.12 and 2.4 before 2.4.29. The root cause is improper verification of the ndigis argument when creating a new route, which can trigger array out-of-bounds conditions...