Launchpad.net

CVE 2008-3272

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.

Related bugs and status

CVE-2008-3272 (Candidate) is related to these bugs:

Bug #94186: 3c59x - 10/100 NIC fails to link to gigabit switch

		In	Importance	Status
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux-source-2.6.20 (Ubuntu)	Undecided	Won't Fix
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux-source-2.6.22 (Ubuntu)	Low	Fix Released
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux (Ubuntu)	Undecided	Fix Released

Bug #125250: Don't recognise USB Pendrive -> sr0: disc change detected.

		In	Importance	Status
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu)	Undecided	Won't Fix
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Hardy)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Hardy)	Undecided	Won't Fix
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Intrepid)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Intrepid)	Undecided	Invalid
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Jaunty)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Jaunty)	Undecided	Invalid

Bug #182716: bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.

		In	Importance	Status
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Ubuntu)	Medium	Fix Released
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	Ubuntu	Undecided	Invalid
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	Linux	Undecided	Invalid
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Mandriva)	Undecided	New
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux-source-2.6.22 (Ubuntu)	Undecided	Won't Fix
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Baltix)	Undecided	New

Bug #185025: Coolermaster Xcraft 360 USB drive fails

Summary				In	Importance	Status
	185025	Coolermaster Xcraft 360 USB drive fails		linux-source-2.6.15 (Ubuntu)	Low	Fix Released
	185025	Coolermaster Xcraft 360 USB drive fails		Linux	Medium	Invalid

Bug #249340: Gutsy->Hardy upgrade hangs in localedef

		In	Importance	Status
249340	Gutsy->Hardy upgrade hangs in localedef	linux-source-2.6.22 (Ubuntu)	High	Fix Released
249340	Gutsy->Hardy upgrade hangs in localedef	linux (Ubuntu)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	langpack-locales (Ubuntu)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	linux-source-2.6.15 (Ubuntu)	High	Fix Released
249340	Gutsy->Hardy upgrade hangs in localedef	langpack-locales (Ubuntu Dapper)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	linux (Ubuntu Dapper)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	linux-source-2.6.15 (Ubuntu Dapper)	High	Fix Released
249340	Gutsy->Hardy upgrade hangs in localedef	linux-source-2.6.22 (Ubuntu Dapper)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	langpack-locales (Ubuntu Gutsy)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	linux (Ubuntu Gutsy)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	linux-source-2.6.15 (Ubuntu Gutsy)	Undecided	Invalid
249340	Gutsy->Hardy upgrade hangs in localedef	linux-source-2.6.22 (Ubuntu Gutsy)	High	Fix Released

Bug #256632: [CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel

		In	Importance	Status
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux (Ubuntu)	Undecided	Fix Released
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux-source-2.6.15 (Ubuntu)	Undecided	Invalid
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux (Ubuntu Hardy)	Undecided	Fix Released
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux-source-2.6.15 (Ubuntu Hardy)	Undecided	Invalid
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux (Ubuntu Intrepid)	Undecided	Fix Released
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux-source-2.6.15 (Ubuntu Intrepid)	Undecided	Invalid
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux (Ubuntu Dapper)	Undecided	Invalid
256632	[CVE-2008-3272, -3496, -3534, -3535] Multiple vulnerabilities in the Linux kernel	linux-source-2.6.15 (Ubuntu Dapper)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-3272

Related bugs and status

Related bugs

References