Launchpad CVE tracker

CVE 2009-1633

Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service (memory corruption) and possibly have unspecified other impact via (1) a malformed Unicode string, related to Unicode string area alignment in fs/cifs/sess.c; or (2) long Unicode characters, related to fs/cifs/cifssmb.c and the cifs_readdir function in fs/cifs/readdir.c.

Related bugs and status

CVE-2009-1633 (Candidate) is related to these bugs:

Bug #395973: Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities

Summary				In	Importance	Status
	395973	Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities		The Dell Mini Project	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2009051...
MLIST: [oss-security] 2009051...
MLIST: [oss-security] 2009051...
CONFIRM: http://git.kernel.org/...
CONFIRM: http://git.kernel.org/...
CONFIRM: http://git.kernel.org/...
CONFIRM: http://www.kernel.org/...
CONFIRM: https://bugzilla.redha...
FEDORA: FEDORA-2009-5356
SECUNIA: 35226
DEBIAN: DSA-1809
FEDORA: FEDORA-2009-5383
SECUNIA: 35298
SECUNIA: 35217
BID: 34612
MANDRIVA: MDVSA-2009:148
REDHAT: RHSA-2009:1157
DEBIAN: DSA-1844
SECUNIA: 36051
CONFIRM: http://wiki.rpath.com/...
SECUNIA: 35847
DEBIAN: DSA-1865
SECUNIA: 36327
SUSE: SUSE-SA:2009:054
SUSE: SUSE-SA:2009:056
SECUNIA: 37351
CONFIRM: http://www.vmware.com/...
SECUNIA: 37471
VUPEN: ADV-2009-3316
SUSE: SUSE-SA:2010:012
UBUNTU: USN-793-1
SECUNIA: 35656
MLIST: [oss-security] 2009042...
MLIST: [oss-security] 2009042...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20090724 rPSA-2009-011...
BUGTRAQ: 20091120 VMSA-2009-001...

Launchpad.net

CVE 2009-1633

Related bugs and status

Related bugs

References