Back to search
CVE-2009-4138
Published: Dec 16, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
37339
vdb-entry
x_refsource_BID
38276
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:7376
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2010:001
vendor-advisory
x_refsource_SUSE
http://support.avaya.com/css/P8/documents/100073666
x_refsource_CONFIRM
SUSE-SA:2010:012
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=547236
x_refsource_CONFIRM
oval:org.mitre.oval:def:9527
vdb-entry
signature
x_refsource_OVAL
http://patchwork.kernel.org/patch/66747/
x_refsource_CONFIRM
[oss-security] 20091215 CVE-2009-4138 kernel: firewire: ohci: handle receive packets with a data length of zero
mailing-list
x_refsource_MLIST
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.32-git9.log
x_refsource_CONFIRM
RHSA-2010:0095
vendor-advisory
x_refsource_REDHAT
SUSE-SA:2010:005
vendor-advisory
x_refsource_SUSE
RHSA-2010:0046
vendor-advisory
x_refsource_REDHAT
DSA-2005
vendor-advisory
x_refsource_DEBIAN
38017
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now