CVE-2009-2649

NameCVE-2009-2649
DescriptionThe IATA (ata) driver in FreeBSD 6.0 and 8.0, when read access to /dev is available, allows local users to cause a denial of service (kernel panic) via a certain IOCTL request with a large count, which triggers a malloc call with a large value.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium
Debian Bugs572811

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kfreebsd-6source(unstable)(unfixed)572811
kfreebsd-7source(unstable)7.3-1572811
kfreebsd-8source(unstable)8.0-1572811

Notes

[lenny] - kfreebsd-7 <no-dsa> (KFreebsd not supported)
[lenny] - kfreebsd-6 <no-dsa> (KFreebsd not supported)

Search for package or bug name: Reporting problems