CVE-2004-0178

NameCVE-2004-0178
DescriptionThe OSS code for the Sound Blaster (sb16) driver in Linux 2.4.x before 2.4.26, when operating in 16 bit mode, does not properly handle certain sample sizes, which allows local users to cause a denial of service (crash) via a sample with an odd number of bytes.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-479, DSA-480, DSA-481, DSA-482, DSA-489, DSA-491, DSA-495
NVD severitylow (attack range: local)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kernel-image-2.4.16-lartsourcewoody20040419lowDSA-495
kernel-image-2.4.16-netwindersourcewoody20040419lowDSA-495
kernel-image-2.4.16-riscpcsourcewoody20040419lowDSA-495
kernel-image-2.4.17-hppasourcewoody32.4lowDSA-480
kernel-image-2.4.17-ia64sourcewoody011226.17lowDSA-481
kernel-image-2.4.17-s390sourcewoody2.4.17-2.woody.4lowDSA-482
kernel-image-2.4.18-1-alphasourcewoody2.4.18-15lowDSA-479
kernel-image-2.4.18-1-i386sourcewoody2.4.18-13lowDSA-479
kernel-image-2.4.18-hppasourcewoody62.3lowDSA-480
kernel-image-2.4.18-i386bfsourcewoody2.4.18-5woody8lowDSA-479
kernel-patch-2.4.16-armsourcewoody20040419lowDSA-495
kernel-patch-2.4.17-apussourcewoody2.4.17-5lowDSA-482
kernel-patch-2.4.17-mipssourcewoody2.4.17-0.020226.2.woody6lowDSA-489
kernel-patch-2.4.17-mipselsourcewoody2.4.17-0.020226.2.woody6lowDSA-489
kernel-patch-2.4.17-s390sourcewoody2.4.17-2.woody.4lowDSA-482
kernel-patch-2.4.18-powerpcsourcewoody2.4.18-1woody5lowDSA-479
kernel-patch-2.4.19-mipssourcewoody2.4.19-0.020911.1.woody4lowDSA-491
kernel-source-2.4.16sourcewoody2.4.16-1woody2lowDSA-495
kernel-source-2.4.17sourcewoody2.4.17-1woody3lowDSA-489
kernel-source-2.4.18sourcewoody2.4.18-14.3lowDSA-479
kernel-source-2.4.19sourcewoody2.4.19-4.woody2lowDSA-491
kernel-source-2.4.27source(unstable)(not affected)
linux-2.6source(unstable)(not affected)

Notes

- linux-2.6 <not-affected> (fixed before first upload; 2.6.8)
- kernel-source-2.4.27 <not-affected> (Fixed before upload into archive; 2.4.26-pre3)

Search for package or bug name: Reporting problems