[kernel-sec-discuss] r1035 - active
dannf at alioth.debian.org
dannf at alioth.debian.org
Sun Nov 25 05:00:43 UTC 2007
Author: dannf
Date: 2007-11-25 05:00:43 +0000 (Sun, 25 Nov 2007)
New Revision: 1035
Modified:
active/CVE-2007-5904
Log:
add description & references
Modified: active/CVE-2007-5904
===================================================================
--- active/CVE-2007-5904 2007-11-25 04:46:56 UTC (rev 1034)
+++ active/CVE-2007-5904 2007-11-25 05:00:43 UTC (rev 1035)
@@ -1,6 +1,12 @@
Candidate: CVE-2007-5904
+Description:
+ Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier
+ allows remote attackers to cause a denial of service (crash) and possibly
+ execute arbitrary code via long SMB responses that trigger the overflows in
+ the SendReceive function.
References:
-Description:
+ http://marc.info/?l=linux-kernel&m=119455843205403&w=2
+ http://marc.info/?l=linux-kernel&m=119457447724276&w=2
Ubuntu-Description:
Notes:
Bugs:
More information about the kernel-sec-discuss
mailing list