CVE-2009-1439
CVE-2009-1439
Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and earlier allows remote attackers to cause a denial of service (crash) via a long nativeFileSystem field in a Tree Connect response to an SMB mount request.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://blog.fefe.de/?ts=b72905a8http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b363b3304bcf68c4541683b2eff70b29f0446a5bhttp://lists.opensuse.org/opensuse-security-announce/2009-05/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00002.htmlhttp://lists.samba.org/archive/linux-cifs-client/2009-April/004322.htmlhttps://bugzilla.novell.com/show_bug.cgi?id=492282https://bugzilla.redhat.com/show_bug.cgi?id=494275http://secunia.com/advisories/34981http://secunia.com/advisories/35011http://secunia.com/advisories/35120