[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1772 udev -- several vulnerabilities

ID: oval:org.mitre.oval:def:8217Date: (C)2009-12-15   (M)2023-02-20
Class: PATCHFamily: unix




Sebastian Kramer discovered two vulnerabilities in udev, the /dev and hotplug management daemon. udev does not check the origin of NETLINK messages, allowing local users to gain root privileges. udev suffers from a buffer overflow condition in path encoding, potentially allowing arbitrary code execution.

Platform:
Debian 5.0
Debian 4.0
Product:
udev
Reference:
DSA-1772
CVE-2009-1185
CVE-2009-1186
CVE    2
CVE-2009-1186
CVE-2009-1185
CPE    2
cpe:/o:debian:debian_linux:4.x
cpe:/o:debian:debian_linux:5.x

© SecPod Technologies