CVE-2007-4997

Name	CVE-2007-4997
Description	Integer underflow in the ieee80211_rx function in net/ieee80211/ieee80211_rx.c in the Linux kernel 2.6.x before 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set, aka an "off-by-two error."
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1428-1

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin
fai-kernels	source	etch	1.17+etch.13etch5	DSA-1428-1
linux-2.6	source	etch	2.6.18.dfsg.1-13etch5	DSA-1428-1
linux-2.6	source	(unstable)	2.6.23-1
user-mode-linux	source	etch	2.6.18-1um-2etch.13etch5	DSA-1428-1