Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1265

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2009-1265
Last Modified 23 Mar 2012 12:00:00
Published 07 Apr 2009 09:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1265

Summary

Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux kernel 2.6.24.4, and other versions before 2.6.30-rc1, might allow remote attackers to obtain sensitive information via a large length value, which causes "garbage" memory to be sent.

Vulnerable Systems

Operating System

  • Kernel Linux 2.6.24

  • Kernel Linux 2.6.24.1

  • Kernel Linux 2.6.24.2

  • Kernel Linux 2.6.24.3

  • Kernel Linux 2.6.24.4

  • Kernel Linux 2.6.24.5

  • Kernel Linux 2.6.24.6

  • Kernel Linux 2.6.24.7

  • Kernel Linux 2.6.25

  • Kernel Linux 2.6.25.1

  • Kernel Linux 2.6.25.10

  • Kernel Linux 2.6.25.11

  • Kernel Linux 2.6.25.12

  • Kernel Linux 2.6.25.13

  • Kernel Linux 2.6.25.14

  • Kernel Linux 2.6.25.15

  • Kernel Linux 2.6.25.16

  • Kernel Linux 2.6.25.17

  • Kernel Linux 2.6.25.18

  • Kernel Linux 2.6.25.19

  • Kernel Linux 2.6.25.2

  • Kernel Linux 2.6.25.20

  • Kernel Linux 2.6.25.3

  • Kernel Linux 2.6.25.4

  • Kernel Linux 2.6.25.5

  • Kernel Linux 2.6.25.6

  • Kernel Linux 2.6.25.7

  • Kernel Linux 2.6.25.8

  • Kernel Linux 2.6.25.9

  • Kernel Linux 2.6.26

  • Kernel Linux 2.6.26-rc8-mm1

  • Kernel Linux 2.6.26-rc9

  • Kernel Linux 2.6.26-rc9-git5

  • Kernel Linux 2.6.26.1

  • Kernel Linux 2.6.26.2

  • Kernel Linux 2.6.26.3

  • Kernel Linux 2.6.26.4

  • Kernel Linux 2.6.26.5

  • Kernel Linux 2.6.26.6

  • Kernel Linux 2.6.26.7

  • Kernel Linux 2.6.26.8

  • Kernel Linux 2.6.27

  • Kernel Linux 2.6.27.1

  • Kernel Linux 2.6.27.10

  • Kernel Linux 2.6.27.11

  • Kernel Linux 2.6.27.12

  • Kernel Linux 2.6.27.13

  • Kernel Linux 2.6.27.14

  • Kernel Linux 2.6.27.15

  • Kernel Linux 2.6.27.16

  • Kernel Linux 2.6.27.17

  • Kernel Linux 2.6.27.18

  • Kernel Linux 2.6.27.19

  • Kernel Linux 2.6.27.2

  • Kernel Linux 2.6.27.3

  • Kernel Linux 2.6.27.4

  • Kernel Linux 2.6.27.5

  • Kernel Linux 2.6.27.6

  • Kernel Linux 2.6.27.7

  • Kernel Linux 2.6.27.8

  • Kernel Linux 2.6.27.9

  • Kernel Linux 2.6.28

  • Kernel Linux 2.6.28.1

  • Kernel Linux 2.6.28.2

  • Kernel Linux 2.6.28.3

  • Kernel Linux 2.6.28.4

  • Kernel Linux 2.6.28.5

  • Kernel Linux 2.6.28.6

  • Kernel Linux 2.6.28.7

  • Kernel Linux 2.6.28.8

  • Kernel Linux 2.6.29

  • Kernel Linux 2.6.29.1

  • Linux Kernel 2.6.24

  • Linux Kernel 2.6.24.1

  • Linux Kernel 2.6.24.2

  • Linux Kernel 2.6.24.3

  • Linux Kernel 2.6.24.4

  • Linux Kernel 2.6.24.5

  • Linux Kernel 2.6.24.6

  • Linux Kernel 2.6.24.7

  • Linux Kernel 2.6.25

  • Linux Kernel 2.6.25.1

  • Linux Kernel 2.6.25.10

  • Linux Kernel 2.6.25.11

  • Linux Kernel 2.6.25.12

  • Linux Kernel 2.6.25.13

  • Linux Kernel 2.6.25.14

  • Linux Kernel 2.6.25.15

  • Linux Kernel 2.6.25.16

  • Linux Kernel 2.6.25.17

  • Linux Kernel 2.6.25.18

  • Linux Kernel 2.6.25.19

  • Linux Kernel 2.6.25.2

  • Linux Kernel 2.6.25.20

  • Linux Kernel 2.6.25.3

  • Linux Kernel 2.6.25.4

  • Linux Kernel 2.6.25.5

  • Linux Kernel 2.6.25.6

  • Linux Kernel 2.6.25.7

  • Linux Kernel 2.6.25.8

  • Linux Kernel 2.6.25.9

  • Linux Kernel 2.6.26

  • Linux Kernel 2.6.26-rc8-mm1

  • Linux Kernel 2.6.26-rc9

  • Linux Kernel 2.6.26-rc9-git5

  • Linux Kernel 2.6.26.1

  • Linux Kernel 2.6.26.2

  • Linux Kernel 2.6.26.3

  • Linux Kernel 2.6.26.4

  • Linux Kernel 2.6.26.5

  • Linux Kernel 2.6.26.6

  • Linux Kernel 2.6.26.7

  • Linux Kernel 2.6.26.8

  • Linux Kernel 2.6.27

  • Linux Kernel 2.6.27.1

  • Linux Kernel 2.6.27.10

  • Linux Kernel 2.6.27.11

  • Linux Kernel 2.6.27.12

  • Linux Kernel 2.6.27.13

  • Linux Kernel 2.6.27.14

  • Linux Kernel 2.6.27.15

  • Linux Kernel 2.6.27.16

  • Linux Kernel 2.6.27.17

  • Linux Kernel 2.6.27.18

  • Linux Kernel 2.6.27.19

  • Linux Kernel 2.6.27.2

  • Linux Kernel 2.6.27.20

  • Linux Kernel 2.6.27.21

  • Linux Kernel 2.6.27.22

  • Linux Kernel 2.6.27.23

  • Linux Kernel 2.6.27.24

  • Linux Kernel 2.6.27.25

  • Linux Kernel 2.6.27.26

  • Linux Kernel 2.6.27.27

  • Linux Kernel 2.6.27.28

  • Linux Kernel 2.6.27.29

  • Linux Kernel 2.6.27.3

  • Linux Kernel 2.6.27.30

  • Linux Kernel 2.6.27.31

  • Linux Kernel 2.6.27.32

  • Linux Kernel 2.6.27.33

  • Linux Kernel 2.6.27.34

  • Linux Kernel 2.6.27.35

  • Linux Kernel 2.6.27.36

  • Linux Kernel 2.6.27.37

  • Linux Kernel 2.6.27.38

  • Linux Kernel 2.6.27.39

  • Linux Kernel 2.6.27.4

  • Linux Kernel 2.6.27.40

  • Linux Kernel 2.6.27.41

  • Linux Kernel 2.6.27.42

  • Linux Kernel 2.6.27.43

  • Linux Kernel 2.6.27.44

  • Linux Kernel 2.6.27.45

  • Linux Kernel 2.6.27.46

  • Linux Kernel 2.6.27.47

  • Linux Kernel 2.6.27.48

  • Linux Kernel 2.6.27.49

  • Linux Kernel 2.6.27.5

  • Linux Kernel 2.6.27.50

  • Linux Kernel 2.6.27.51

  • Linux Kernel 2.6.27.52

  • Linux Kernel 2.6.27.53

  • Linux Kernel 2.6.27.54

  • Linux Kernel 2.6.27.55

  • Linux Kernel 2.6.27.56

  • Linux Kernel 2.6.27.57

  • Linux Kernel 2.6.27.58

  • Linux Kernel 2.6.27.59

  • Linux Kernel 2.6.27.6

  • Linux Kernel 2.6.27.60

  • Linux Kernel 2.6.27.61

  • Linux Kernel 2.6.27.62

  • Linux Kernel 2.6.27.7

  • Linux Kernel 2.6.27.8

  • Linux Kernel 2.6.27.9

  • Linux Kernel 2.6.28

  • Linux Kernel 2.6.28.1

  • Linux Kernel 2.6.28.10

  • Linux Kernel 2.6.28.2

  • Linux Kernel 2.6.28.3

  • Linux Kernel 2.6.28.4

  • Linux Kernel 2.6.28.5

  • Linux Kernel 2.6.28.6

  • Linux Kernel 2.6.28.7

  • Linux Kernel 2.6.28.8

  • Linux Kernel 2.6.28.9

  • Linux Kernel 2.6.29

  • Linux Kernel 2.6.29.1

  • Linux Kernel 2.6.29.2

  • Linux Kernel 2.6.29.3

  • Linux Kernel 2.6.29.4

  • Linux Kernel 2.6.29.5

  • Linux Kernel 2.6.29.6


References

UBUNTU - USN-793-1

BID - 34654

MLIST - [oss-security] 20090408 CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user frame size

MANDRIVA - MDVSA-2009:135

MANDRIVA - MDVSA-2009:119

DEBIAN - DSA-1800

DEBIAN - DSA-1794

DEBIAN - DSA-1787

SECUNIA - 35656

SECUNIA - 35394

SECUNIA - 35390

SECUNIA - 35387

SECUNIA - 35185

SECUNIA - 35121

SECUNIA - 35011

SECUNIA - 34981

OSVDB - 53631

OSVDB - 53630

OSVDB - 53571

SUSE - SUSE-SA:2009:032

SUSE - SUSE-SA:2009:031

SUSE - SUSE-SA:2009:030

SUSE - SUSE-SA:2009:028

CONFIRM - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=83e0bbcbe2145f160fbaa109b0439dae7f4a38a9

MISC - http://bugzilla.kernel.org/show_bug.cgi?id=10423


Last Updated: 27 May 2016 10:57:30