CERT-MU Vulnerability Note VN-2008-15
Linux Kernel 'ib700wdt.c' Buffer Underflow Vulnerability
Original Issue Date: January 02, 2009
Severity Rating: High
Systems Affected
- Linux Kernel Versions prior to 2.6.28-rc1
Overview
A vulnerability has been reported in the ibwdt_ioctl function in Linux Kernel, which could be exploited by an attacker to cause a Denial of Service condition.
Description
The drivers/watchdog/ib700wdt.c file implements the support for the WatchDog located on IB700 cards (Full-Size Socket 370 CPU Card).
This vulnerability exists because a buffer underflow occurs in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c during a certain /dev/watchdog WDIOC_SETTIMEOUT IOCTL call.
A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges or create a denial of service condition, denying service to legitimate users.
Solution
Update to latest versions
http://kernel.org/pub/linux/kernel/v2.6/testing/linux-2.6.28-rc1.tar.bz2
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Vendor Information
kernel.org
http://www.kernel.org/
CVE Name
CVE-2008-5702
References
kernel.org
http://www.kernel.org/
SecurityFocus
http://www.securityfocus.com/bid/33003
OSVDB
http://osvdb.org/show/osvdb/51001
Security Database
http://www.security-database.com/detail.php?alert=CVE-2008-5702
|
