Home page logo
/

oss-sec logo oss-sec mailing list archives

CVE-2009-4067 kernel: usb: buffer overflow in auerswald_probe()
From: Eugene Teo <eugene () redhat com>
Date: Fri, 15 Jul 2011 16:03:07 +0800

A buffer overflow flaw was found in the Linux kernel's Auerswald
PBX/System Telephone usb driver implementation. There's no upstream
patch as the affected driver was removed from the kernel in 2.6.27.

For more information, check out the references:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4067
http://labs.mwrinfosecurity.com/files/Advisories/mwri_linux-usb-buffer-overflow_2009-10-29.pdf
https://bugzilla.redhat.com/CVE-2009-4067

(Attention Steve:) Looks like MITRE assigned this CVE to the reporter on
Nov 24, 2009, but did not update their CVE database entry for this since
then. Fortunately this is not a critical issue...

Eugene


  By Date           By Thread  

Current thread:
  • CVE-2009-4067 kernel: usb: buffer overflow in auerswald_probe() Eugene Teo (Jul 15)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault