Linux Kernel Setsockopt MCAST_MSFILTER Integer Overflow Vulnerability

Bugtraq ID: 10179
Class: Boundary Condition Error
CVE: CVE-2004-0424
Remote: No
Local: Yes
Published: Apr 20 2004 12:00AM
Updated: May 25 2007 11:21PM
Credit: Paul Starzetz is credited with initial discovery and Wojciech Purczynski is credited with followup research.
Vulnerable: Slackware Linux 9.1
Slackware Linux -current
SGI ProPack 3.0
Linux kernel 2.6.3
Linux kernel 2.6.2
Linux kernel 2.6.1 -rc2
Linux kernel 2.6.1 -rc1
Linux kernel 2.6.1
Linux kernel 2.4.25
Linux kernel 2.4.24 -ow1
Linux kernel 2.4.24
Linux kernel 2.4.23 -pre9
Linux kernel 2.4.23 -ow2
Linux kernel 2.4.23
+ Trustix Secure Linux 2.0
Linux kernel 2.4.22
+ Devil-Linux Devil-Linux 1.0.5
+ Devil-Linux Devil-Linux 1.0.4
+ Mandriva Linux Mandrake 9.2 amd64
+ Mandriva Linux Mandrake 9.2
+ Redhat Fedora Core1
+ Slackware Linux 9.1
Not Vulnerable: Linux kernel 2.6.5
+ S.u.S.E. Linux Personal 9.1 x86_64
+ S.u.S.E. Linux Personal 9.1 x86_64
+ S.u.S.E. Linux Personal 9.1
+ S.u.S.E. Linux Personal 9.1
+ SuSE Linux Enterprise Server 9
Linux kernel 2.6.4
Linux kernel 2.4.26


 

Privacy Statement
Copyright 2010, SecurityFocus