Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2006-1368

Buffer overflow in the USB Gadget RNDIS implementation in the Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (kmalloc'd memory corruption) via a remote NDIS response to OID_GEN_SUPPORTED_LIST, which causes memory to be allocated for the reply data but not the reply structure.

Related bugs and status

CVE-2006-1368 (Candidate) is related to these bugs:

Bug #41284: Don't allow a backslash in a path component (CVE-2006-1863)

Summary				In	Importance	Status
	41284	Don't allow a backslash in a path component (CVE-2006-1863)		linux-source-2.6.15 (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.kernel.org/...
CONFIRM: http://www.kernel.org/...
SECUNIA: 19330
BID: 17831
SECUNIA: 19955
DEBIAN: DSA-1097
SECUNIA: 20671
DEBIAN: DSA-1103
SECUNIA: 20914
SECUNIA: 21045
MANDRIVA: MDKSA-2006:123
VUPEN: ADV-2006-1046
VUPEN: ADV-2006-2554
UBUNTU: USN-281-1