oss-sec mailing list archives
Re: CVE request -- Linux kernel irda driver buffer overflow
From: Miklos Vajna <vmiklos () frugalware org>
Date: Tue, 27 Jan 2009 09:41:47 +0100
On Tue, Jan 27, 2009 at 07:46:27AM +0000, Mark J Cox <mjc () redhat com> wrote:
This doesn't seem to have any security implications; it's a single null byte overflow that happens all the time (not under control of an attacker), and from looking at the function that null byte isn't going to overwrite anything that would lead to a security consequence. So it looks to me like a bug, no CVE.
Hrm, OK. Thanks for the correction.
Attachment:
_bin
Description:
Current thread:
- CVE request -- Linux kernel irda driver buffer overflow Miklos Vajna (Jan 26)
- Re: CVE request -- Linux kernel irda driver buffer overflow Mark J Cox (Jan 26)
- Re: CVE request -- Linux kernel irda driver buffer overflow Miklos Vajna (Jan 27)
- Re: CVE request -- Linux kernel irda driver buffer overflow Mark J Cox (Jan 26)