CVE-2009-1439

Published: Apr 27, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and earlier allows remote attackers to cause a denial of service (crash) via a long nativeFileSystem field in a Tree Connect response to an SMB mount request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

35390

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.*

mailing-list

x_refsource_MLIST

[oss-security] 20090405 CVE request? buffer overflow in CIFS in 2.6.*

mailing-list

x_refsource_MLIST

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b363b3304bcf68c4541683b2eff70b29f0446a5b

x_refsource_CONFIRM

35226

third-party-advisory

x_refsource_SECUNIA

SUSE-SA:2009:028

vendor-advisory

x_refsource_SUSE

37471

third-party-advisory

x_refsource_SECUNIA

FEDORA-2009-5356

vendor-advisory

x_refsource_FEDORA

SUSE-SA:2009:032

vendor-advisory

x_refsource_SUSE

35656

third-party-advisory

x_refsource_SECUNIA

http://xorl.wordpress.com/2009/04/07/linux-kernel-tree-connect-cifs-remote-buffer-overflow/

x_refsource_MISC

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

x_refsource_CONFIRM

oval:org.mitre.oval:def:8265

vdb-entry

signature

x_refsource_OVAL

DSA-1794

vendor-advisory

x_refsource_DEBIAN

20090516 rPSA-2009-0084-1 kernel

mailing-list

x_refsource_BUGTRAQ

34453

vdb-entry

x_refsource_BID

SUSE-SA:2009:030

vendor-advisory

x_refsource_SUSE

35185

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=494275

x_refsource_CONFIRM

35011

third-party-advisory

x_refsource_SECUNIA

20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

mailing-list

x_refsource_BUGTRAQ

http://blog.fefe.de/?ts=b72905a8

x_refsource_MISC

[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.*

mailing-list

x_refsource_MLIST

35120

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.novell.com/show_bug.cgi?id=492282

x_refsource_CONFIRM

SUSE-SA:2009:031

vendor-advisory

x_refsource_SUSE

USN-793-1

vendor-advisory

x_refsource_UBUNTU

FEDORA-2009-5383

vendor-advisory

x_refsource_FEDORA

RHSA-2009:1081

vendor-advisory

x_refsource_REDHAT

34981

third-party-advisory

x_refsource_SECUNIA

DSA-1800

vendor-advisory

x_refsource_DEBIAN

35343

third-party-advisory

x_refsource_SECUNIA

[linux-cifs-client] 20090406 [PATCH] cifs: Fix insufficient memory allocation for nativeFileSystem field

mailing-list

x_refsource_MLIST

35387

third-party-advisory

x_refsource_SECUNIA

DSA-1787

vendor-advisory

x_refsource_DEBIAN

35217

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:10321

vdb-entry

signature

x_refsource_OVAL

http://wiki.rpath.com/Advisories:rPSA-2009-0084

x_refsource_CONFIRM

35121

third-party-advisory

x_refsource_SECUNIA

ADV-2009-3316

vdb-entry

x_refsource_VUPEN

35394

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-1439

Description

Affected Products

References