|Description||drivers/firmware/dell_rbu.c in the Linux kernel before 18.104.22.168, and 2.6.28.x before 22.214.171.124, allows local users to cause a denial of service (system crash) via a read system call that specifies zero bytes from the (1) image_type or (2) packet_size file in /sys/devices/platform/dell_rbu/.|
|Source||CVE (at NVD; LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)|
|References||DSA-1749-1, DSA-1787-1, DSA-1794-1|
|NVD severity||medium (attack range: local)|
The information below is based on the following data on fixed versions.