CVE-2007-2831

Published: 24 May 2007

Array index error in the (1) ieee80211_ioctl_getwmmparams and (2) ieee80211_ioctl_setwmmparams functions in net80211/ieee80211_wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service (system crash), possibly obtain kernel memory contents, and possibly execute arbitrary code via a large negative array index value.

Priority

Unknown

Status

Package Release Status
linux-restricted-modules-2.6.15
Launchpad, Ubuntu, Debian
Upstream Needs triage

linux-restricted-modules-2.6.17
Launchpad, Ubuntu, Debian
Upstream Needs triage

linux-restricted-modules-2.6.20
Launchpad, Ubuntu, Debian
Upstream Needs triage