CVE-2008-1675

NameCVE-2008-1675
DescriptionThe bdx_ioctl_priv function in the tehuti driver (tehuti.c) in Linux kernel 2.6.x before 2.6.25.1 does not properly check certain information related to register size, which has unspecified impact and local attack vectors, probably related to reading or writing kernel memory.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
linux-2.6sourceetch(not affected)
linux-2.6source(unstable)2.6.25-2low
linux-2.6.24source(unstable)2.6.24-6~etchnhalf.2

Notes

[etch] - linux-2.6 <not-affected> (Tehuti driver not in 2.6.18)
Fixed in 2.6.24.6 and 2.6.25.1
Search for package or bug name: Reporting problems