CVE-2009-2406

Common Vulnerabilities and Exposures

Upstream information

CVE-2009-2406 at MITRE

Description

Stack-based buffer overflow in the parse_tag_11_packet function in fs/ecryptfs/keystore.c in the eCryptfs subsystem in the Linux kernel before 2.6.30.4 allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving a crafted eCryptfs file, related to not ensuring that the key signature length in a Tag 11 packet is compatible with the key signature buffer size.

NVD CVSS v2 Base Score: 6.9 (AV:L/AC:M/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entry: 523719

SUSE Security Advisories:

SUSE-SA:2009:045, published Thu, 20 Aug 2009 13:00:00 +0000
SUSE-SR:2009:015, published Tue, 15 Sep 2009 09:00:00 +0000

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise High Availability Extension 11	`cluster-network-kmp-default >= 1.4_2.6.27.29_0.1-2.1.13` `cluster-network-kmp-pae >= 1.4_2.6.27.29_0.1-2.1.13` `cluster-network-kmp-xen >= 1.4_2.6.27.29_0.1-2.1.13` `ocfs2-kmp-default >= 1.4_2.6.27.29_0.1-4.1.13` `ocfs2-kmp-pae >= 1.4_2.6.27.29_0.1-4.1.13` `ocfs2-kmp-xen >= 1.4_2.6.27.29_0.1-4.1.13`	sle11-debuginfo.x86 sle11-sdk.x86 sled11.x86 sle11-hae.x86 sles11.x86 SAT Patch Nr: 1212
SUSE Linux Enterprise High Availability Extension 11	`cluster-network-kmp-default >= 1.4_2.6.27.29_0.1-2.1.13` `cluster-network-kmp-xen >= 1.4_2.6.27.29_0.1-2.1.13` `ocfs2-kmp-default >= 1.4_2.6.27.29_0.1-4.1.13` `ocfs2-kmp-xen >= 1.4_2.6.27.29_0.1-4.1.13`	sle11-hae.x86-64 sle11-sdk.x86-64 sle11-debuginfo.x86-64 sles11.x86-64 sled11.x86-64 SAT Patch Nr: 1219
openSUSE 10.3	`kernel-bigsmp >= 2.6.22.19-0.4` `kernel-debug >= 2.6.22.19-0.4` `kernel-default >= 2.6.22.19-0.4` `kernel-kdump >= 2.6.22.19-0.4` `kernel-ppc64 >= 2.6.22.19-0.4` `kernel-source >= 2.6.22.19-0.4` `kernel-syms >= 2.6.22.19-0.4` `kernel-xen >= 2.6.22.19-0.4` `kernel-xenpae >= 2.6.22.19-0.4`
SUSE Linux Enterprise High Availability Extension 11	`cluster-network-kmp-default >= 1.4_2.6.27.29_0.1-2.1.13` `ocfs2-kmp-default >= 1.4_2.6.27.29_0.1-4.1.13`	sles11.ia64 sle11-debuginfo.ia64 sle11-hae.ia64 SAT Patch Nr: 1213
SUSE Linux Enterprise High Availability Extension 11	`cluster-network-kmp-default >= 1.4_2.6.27.29_0.1-2.1.13` `cluster-network-kmp-ppc64 >= 1.4_2.6.27.29_0.1-2.1.13` `ocfs2-kmp-default >= 1.4_2.6.27.29_0.1-4.1.13` `ocfs2-kmp-ppc64 >= 1.4_2.6.27.29_0.1-4.1.13`	sle11-debuginfo.ppc sles11.ppc sle11-hae.ppc SAT Patch Nr: 1217
SUSE Linux Enterprise High Availability Extension 11	`cluster-network-kmp-default >= 1.4_2.6.27.29_0.1-2.1.13` `ocfs2-kmp-default >= 1.4_2.6.27.29_0.1-4.1.13`	sle11-debuginfo.s390x sles11.s390x sle11-hae.s390x SAT Patch Nr: 1218

Markets

Products By Category

Novell

NetIQ (Moving soon to NetIQ.com)

A-Z

Contribute