--%> SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)
[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1772 udev -- several vulnerabilities

ID: oval:org.mitre.oval:def:8217Date: (C)2009-12-15   (M)2017-10-04
Class: PATCHFamily: unix




Sebastian Kramer discovered two vulnerabilities in udev, the /dev and hotplug management daemon. udev does not check the origin of NETLINK messages, allowing local users to gain root privileges. udev suffers from a buffer overflow condition in path encoding, potentially allowing arbitrary code execution.

Platform:
Debian 5.0
Debian 4.0
Product:
udev
Reference:
DSA-1772
CVE-2009-1185
CVE-2009-1186
CVE    2
CVE-2009-1186
CVE-2009-1185

© 2013 SecPod Technologies