Your submission was sent successfully! Close

CVE-2007-5904

Published: 9 November 2007

Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function.

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
hardy Not vulnerable
(2.6.24-4.7)
upstream
Released (2.6.23)
linux-source-2.6.15
Launchpad, Ubuntu, Debian
dapper
Released (2.6.15-52.67)
edgy Does not exist

feisty Does not exist

gutsy Does not exist

upstream Needs triage

linux-source-2.6.17
Launchpad, Ubuntu, Debian
dapper Does not exist

edgy Ignored
(EOL)
feisty Does not exist

gutsy Does not exist

upstream Needs triage

linux-source-2.6.20
Launchpad, Ubuntu, Debian
dapper Does not exist

edgy Does not exist

feisty
Released (2.6.20-17.36)
gutsy Does not exist

upstream Needs triage

linux-source-2.6.22
Launchpad, Ubuntu, Debian
dapper Does not exist

edgy Does not exist

feisty Does not exist

gutsy
Released (2.6.22-15.54)
upstream Needs triage