Back to search
CVE-2004-2731
Published: Oct 9, 2007
Modified: Aug 8, 2024
PUBLISHED
Description
Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arbitrary code by specifying (1) a small buffer size to the copyin_string function or (2) a negative buffer size to the copyin function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
11981
third-party-advisory
x_refsource_SECUNIA
7345
vdb-entry
x_refsource_OSVDB
1010617
vdb-entry
x_refsource_SECTRACK
8363
vdb-entry
x_refsource_OSVDB
20040629 linux kernel Sbus PROM driver multiple integer overflows
mailing-list
x_refsource_BUGTRAQ
DSA-1503
vendor-advisory
x_refsource_DEBIAN
29058
third-party-advisory
x_refsource_SECUNIA
http://www.securiteam.com/unixfocus/5GP0515DFW.html
x_refsource_MISC
10632
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now