SUSE CVE-2011-4913
The roseparseccitt function in net/rose/rosesubr.c in the Linux kernel before 2.6.39 does not validate the FACCCITTDESTNSAP and FACCCITTSRCNSAP fields, which allows remote attackers to 1 cause a denial of service integer underflow, heap memory corruption, and panic via a small length value in dat...