[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96078

 
 

909

 
 

78009

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2009:103-1 -- Mandriva udev

ID: oval:org.secpod.oval:def:301207Date: (C)2012-01-07   (M)2017-10-04
Class: PATCHFamily: unix




Security vulnerabilities have been identified and fixed in udev. udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space . Buffer overflow in the util_path_encode function in udev/lib/libudev-util.c in udev before 1.4.1 allows local users to cause a denial of service via vectors that trigger a call with crafted arguments . The updated packages have been patched to prevent this. Update: Packages for 2008.0 are being provided due to extended support for Corporate products.

Platform:
Mandriva Linux 2008.0
Product:
udev
Reference:
MDVSA-2009:103-1
CVE-2009-1186
CVE-2009-1185
CVE    2
CVE-2009-1186
CVE-2009-1185
CPE    1
cpe:/o:mandriva:linux:2008.0

© 2013 SecPod Technologies