First published: Tue Mar 01 2011(Updated: )
The bnep_sock_ioctl function in net/bluetooth/bnep/sock.c in the Linux kernel before 2.6.39 does not ensure that a certain device field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory, or cause a denial of service (BUG and system crash), via a BNEPCONNADD command.
Credit: secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
ubuntu/linux | <2.6.24-29.93 | 2.6.24-29.93 |
ubuntu/linux | <2.6.32-32.62 | 2.6.32-32.62 |
ubuntu/linux | <2.6.35-30.52 | 2.6.35-30.52 |
ubuntu/linux | <2.6.38-9.43 | 2.6.38-9.43 |
ubuntu/linux | <2.6.39~ | 2.6.39~ |
ubuntu/linux-ec2 | <2.6.32-316.30 | 2.6.32-316.30 |
ubuntu/linux-ec2 | <2.6.39~ | 2.6.39~ |
ubuntu/linux-fsl-imx51 | <2.6.31-610.27 | 2.6.31-610.27 |
ubuntu/linux-fsl-imx51 | <2.6.39~ | 2.6.39~ |
ubuntu/linux-lts-backport-maverick | <2.6.35-30.54~ | 2.6.35-30.54~ |
ubuntu/linux-lts-backport-maverick | <2.6.39~ | 2.6.39~ |
ubuntu/linux-lts-backport-natty | <2.6.38-9.43~ | 2.6.38-9.43~ |
ubuntu/linux-lts-backport-natty | <2.6.39~ | 2.6.39~ |
ubuntu/linux-lts-backport-oneiric | <2.6.39~ | 2.6.39~ |
ubuntu/linux-mvl-dove | <2.6.32-217.34 | 2.6.32-217.34 |
ubuntu/linux-mvl-dove | <2.6.32-417.34 | 2.6.32-417.34 |
ubuntu/linux-mvl-dove | <2.6.39~ | 2.6.39~ |
ubuntu/linux-ti-omap4 | <2.6.35-903.23 | 2.6.35-903.23 |
ubuntu/linux-ti-omap4 | <2.6.38-1209.13 | 2.6.38-1209.13 |
ubuntu/linux-ti-omap4 | <2.6.39~ | 2.6.39~ |
Linux Linux kernel | =2.6.38-rc7 | |
Linux Linux kernel | =2.6.38-rc6 | |
Linux Linux kernel | =2.6.38-rc4 | |
Linux Linux kernel | =2.6.38.3 | |
Linux Linux kernel | <=2.6.38.8 | |
Linux Linux kernel | =2.6.38-rc3 | |
Linux Linux kernel | =2.6.38-rc5 | |
Linux Linux kernel | =2.6.38-rc2 | |
Linux Linux kernel | =2.6.38.6 | |
Linux Linux kernel | =2.6.38.1 | |
Linux Linux kernel | =2.6.38-rc1 | |
Linux Linux kernel | =2.6.38.5 | |
Linux Linux kernel | =2.6.38.2 | |
Linux Linux kernel | =2.6.38 | |
Linux Linux kernel | =2.6.38-rc8 | |
Linux Linux kernel | =2.6.38.4 | |
Linux Linux kernel | =2.6.38.7 | |
<=2.6.38.8 | ||
=2.6.38 | ||
=2.6.38-rc1 | ||
=2.6.38-rc2 | ||
=2.6.38-rc3 | ||
=2.6.38-rc4 | ||
=2.6.38-rc5 | ||
=2.6.38-rc6 | ||
=2.6.38-rc7 | ||
=2.6.38-rc8 | ||
=2.6.38.1 | ||
=2.6.38.2 | ||
=2.6.38.3 | ||
=2.6.38.4 | ||
=2.6.38.5 | ||
=2.6.38.6 | ||
=2.6.38.7 | ||
debian/linux-2.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)