Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-2909

Integer signedness error in the ax25_setsockopt function in net/ax25/af_ax25.c in the ax25 subsystem in the Linux kernel before 2.6.31.2 allows local users to cause a denial of service (OOPS) via a crafted optlen value in an SO_BINDTODEVICE operation.

Related bugs and status

CVE-2009-2909 (Candidate) is related to these bugs:

Bug #395973: Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities

Summary				In	Importance	Status
	395973	Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities		The Dell Mini Project	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: https://www.redhat.com...
MISC: https://bugzilla.redha...
MISC: http://lists.opensuse....
MISC: http://lists.opensuse....
MISC: http://www.ubuntu.com/...
MISC: http://article.gmane.o...
MISC: http://marc.info/?l=os...
MISC: http://git.kernel.org/...
MISC: http://www.kernel.org/...