Your submission was sent successfully! Close

CVE-2009-1265

Published: 8 April 2009

Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux kernel 2.6.24.4, and other versions before 2.6.30-rc1, might allow remote attackers to obtain sensitive information via a large length value, which causes "garbage" memory to be sent.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
dapper Does not exist

gutsy Does not exist

hardy
Released (2.6.24-24.55)
intrepid
Released (2.6.27-14.35)
jaunty
Released (2.6.28-13.45)
upstream
Released (2.6.30~rc1)
linux-source-2.6.15
Launchpad, Ubuntu, Debian
dapper
Released (2.6.15-54.77)
gutsy Does not exist

hardy Does not exist

intrepid Does not exist

jaunty Does not exist

upstream
Released (2.6.30~rc1)
linux-source-2.6.22
Launchpad, Ubuntu, Debian
dapper Does not exist

gutsy Needs triage
(reached end-of-life)
hardy Does not exist

intrepid Does not exist

jaunty Does not exist

upstream
Released (2.6.30~rc1)