CVE 2008-2358
Integer overflow in the dccp_feat_change function in net/dccp/feat.c in the Datagram Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.18, and 2.6.17 through 2.6.20, allows local users to gain privileges via an invalid feature length, which leads to a heap-based buffer overflow.
Related bugs and status
CVE-2008-2358 (Candidate) is related to these bugs:
Bug #94186: 3c59x - 10/100 NIC fails to link to gigabit switch
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 94186 | 3c59x - 10/100 NIC fails to link to gigabit switch | linux-source-2.6.20 (Ubuntu) | Undecided | Won't Fix | ||
| 94186 | 3c59x - 10/100 NIC fails to link to gigabit switch | linux-source-2.6.22 (Ubuntu) | Low | Fix Released | ||
| 94186 | 3c59x - 10/100 NIC fails to link to gigabit switch | linux (Ubuntu) | Undecided | Fix Released | ||
Bug #125250: Don't recognise USB Pendrive -> sr0: disc change detected.
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux-source-2.6.20 (Ubuntu) | Undecided | Won't Fix | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux (Ubuntu) | Medium | Fix Released | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux (Ubuntu Hardy) | Medium | Fix Released | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux-source-2.6.20 (Ubuntu Hardy) | Undecided | Won't Fix | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux (Ubuntu Intrepid) | Medium | Fix Released | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux-source-2.6.20 (Ubuntu Intrepid) | Undecided | Invalid | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux (Ubuntu Jaunty) | Medium | Fix Released | ||
| 125250 | Don't recognise USB Pendrive -> sr0: disc change detected. | linux-source-2.6.20 (Ubuntu Jaunty) | Undecided | Invalid | ||
Bug #182716: bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 182716 | bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work. | linux (Ubuntu) | Medium | Fix Released | ||
| 182716 | bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work. | Ubuntu | Undecided | Invalid | ||
| 182716 | bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work. | Linux | Undecided | Invalid | ||
| 182716 | bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work. | linux (Mandriva) | Undecided | New | ||
| 182716 | bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work. | linux-source-2.6.22 (Ubuntu) | Undecided | Won't Fix | ||
| 182716 | bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work. | linux (Baltix) | Undecided | New | ||
Bug #238524: [CVE-2008-1673, CVE-2008-2358] Linux heap overflows potentially leading to remote arbitrary code execution
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 238524 | [CVE-2008-1673, CVE-2008-2358] Linux heap overflows potentially leading to remote arbitrary code execution | linux (Ubuntu) | Undecided | Fix Released | ||
| 238524 | [CVE-2008-1673, CVE-2008-2358] Linux heap overflows potentially leading to remote arbitrary code execution | linux-source-2.6.15 (Ubuntu) | Undecided | Fix Released | ||
| 238524 | [CVE-2008-1673, CVE-2008-2358] Linux heap overflows potentially leading to remote arbitrary code execution | linux-source-2.6.20 (Ubuntu) | Undecided | Fix Released | ||
| 238524 | [CVE-2008-1673, CVE-2008-2358] Linux heap overflows potentially leading to remote arbitrary code execution | linux-source-2.6.22 (Ubuntu) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
