4 matches found
SUSE CVE-2008-5744
Array index error in the dahdi/tor2.c driver in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to an incorrect tor2 patch for CVE-2008-5396 that uses the wrong variable in a range check...
Debian DSA-1699-1 : zaptel - array index error
An array index error in zaptel, a set of drivers for telephony hardware, could allow users to crash the system or escalate their privileges by overwriting kernel memory CVE-2008-5396 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 1699-1] New zaptel packages fix privilege escalation
------------------------------------------------------------------------ Debian Security Advisory DSA-1699-1 [email protected] http://www.debian.org/security/ Florian Weimer January 11, 2009 http://www.debian.org/security/faq -...
CVE-2008-5744
CVE-2008-5744 describes an array index error in the zaptel/DAHDI driver (dahdi/tor2.c) that allows local users in the dialout group to overwrite kernel memory by writing to /dev/zap/ctl. Affected: Zaptel/DAHDI versions up to 1.4.11 (and related patches). The root cause relates to an incorrect tor...