CVE-2008-4934 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-4934
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-4934

Description: The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel before 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows attackers to cause a denial of service (system crash) via a crafted hfsplus filesystem image.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/46327 UBUNTU http://www.ubuntu.com/usn/usn-679-1 SAID Secunia Advisory: SA33556 Secunia Advisory: SA32998 Secunia Advisory: SA33180 Secunia Advisory: SA32510 Secunia Advisory: SA32918 Secunia Advisory: SA33858 REDHAT http://www.redhat.com/support/errata/RHSA-2009-0014.html http://rhn.redhat.com/errata/RHSA-2009-0264.html MLIST http://www.openwall.com/lists/oss-security/2008/11/03/2 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:234 DEBIAN http://www.debian.org/security/2008/dsa-1687 http://www.debian.org/security/2008/dsa-1681 CONFIRM http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.28-rc1 http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git;a=commit;h=649f1ee6c705aab644035a7998d7b574193a598a BID 32096

Return to the previous page.