CVE-2007-4997 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-4997
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4997

Description: Integer underflow in the ieee80211_rx function in net/ieee80211/ieee80211_rx.c in the Linux kernel 2.6.x before 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set, aka an "off-by-two error."

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/38247 UBUNTU http://www.ubuntu.com/usn/usn-574-1 http://www.ubuntu.com/usn/usn-558-1 http://www.ubuntu.com/usn/usn-578-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html http://www.novell.com/linux/security/advisories/2007_59_kernel.html SAID Secunia Advisory: SA28170 Secunia Advisory: SA28806 Secunia Advisory: SA28706 Secunia Advisory: SA28162 Secunia Advisory: SA28033 Secunia Advisory: SA27912 Secunia Advisory: SA27824 Secunia Advisory: SA27555 Secunia Advisory: SA27614 Secunia Advisory: SA28971 REDHAT http://www.redhat.com/support/errata/RHSA-2007-1104.html http://www.redhat.com/support/errata/RHSA-2007-0993.html MISC http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git;a=commitdiff;h=04045f98e0457aba7d4e6736f37eed189c48a5f7 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:232 http://www.mandriva.com/security/advisories?name=MDKSA-2007:226 http://www.mandriva.com/security/advisories?name=MDVSA-2008:008 http://www.mandriva.com/security/advisories?name=MDVSA-2008:105 DEBIAN http://www.debian.org/security/2007/dsa-1428 CONFIRM http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23 BID 26337

Return to the previous page.