Back to search
CVE-2002-1420
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
Integer signedness error in select() on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data copying operation.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
5442
vdb-entry
x_refsource_BID
openbsd-select-bo(9809)
vdb-entry
x_refsource_XF
VU#259787
third-party-advisory
x_refsource_CERT-VN
7554
vdb-entry
x_refsource_OSVDB
20020812 OpenBSD Security Advisory: Select Boundary Condition (fwd)
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now