What is the severity of REDHAT-BUG-447389?

The severity of REDHAT-BUG-447389 is high due to potential heap overflow vulnerabilities.

How do I fix REDHAT-BUG-447389?

To fix REDHAT-BUG-447389, you should apply the latest security patches provided by Red Hat for the affected kernel versions.

Which versions of the Linux kernel are affected by REDHAT-BUG-447389?

Versions of the Red Hat Linux kernel from 2.6.17 to 2.6.20 are affected by REDHAT-BUG-447389.

What type of vulnerability is REDHAT-BUG-447389?

REDHAT-BUG-447389 is a heap overflow vulnerability related to DCCP feature reconciliation.

Is REDHAT-BUG-447389 being actively exploited?

There is no public information indicating that REDHAT-BUG-447389 is actively being exploited, but it is advisable to address it promptly.

Vulnerability/
REDHAT-BUG-447389

medium

CWE

190

19/5/2008

12/11/2021

REDHAT-BUG-447389: Integer Overflow

First published: Mon May 19 2008(Updated: )

Description of problem: Backport the feature length validation. Without this it's possible for rlen to ovelflow to 0, causing kmalloc(0), and a heap overflow during DCCP feature reconciliation. rlen = 1 + opt->dccpop_len; rpref = kmalloc(rlen, GFP_ATOMIC); memcpy(&rpref[1], opt->dccpop_val, opt->dccpop_len); Thanks to Brandon Edwards of McAfee Avert labs for discovering this issue. Impact: A vulnerability exists in the DCCP implementation which can be setup and exploited by a local attacker. The vulnerability is an integer overflow which leads to a kmalloc() for 0 bytes, followed by a memory copy into the returned pointer for 255 bytes, which causes a heap overflow. This type of vulnerability can be exploited by a local attacker to gain arbitrary code execution. Version-Release number of selected component (if applicable): 2.6.17 <= x <= 2.6.20 (See the timeline for more details) Additional information: This vulnerability affects the dccp kernel module (shipped as part of the RHEL kernel updates).

Affected Software	Affected Version	How to fix
Red Hat Linux	>=2.6.17<=2.6.20

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-447389?
The severity of REDHAT-BUG-447389 is high due to potential heap overflow vulnerabilities.
How do I fix REDHAT-BUG-447389?
To fix REDHAT-BUG-447389, you should apply the latest security patches provided by Red Hat for the affected kernel versions.
Which versions of the Linux kernel are affected by REDHAT-BUG-447389?
Versions of the Red Hat Linux kernel from 2.6.17 to 2.6.20 are affected by REDHAT-BUG-447389.
What type of vulnerability is REDHAT-BUG-447389?
REDHAT-BUG-447389 is a heap overflow vulnerability related to DCCP feature reconciliation.
Is REDHAT-BUG-447389 being actively exploited?
There is no public information indicating that REDHAT-BUG-447389 is actively being exploited, but it is advisable to address it promptly.

agent/references
agent/type
agent/last-modified-date
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2008-2358
agent/severity
agent/weakness
agent/description
agent/event
agent/trending
agent/source
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/red hat
canonical/red hat linux

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.