Launchpad.net

CVE 2008-3276

Integer overflow in the dccp_setsockopt_change function in net/dccp/proto.c in the Datagram Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service (panic) via a crafted integer value, related to Change L and Change R options without at least one byte in the dccpsf_val field.

Related bugs and status

CVE-2008-3276 (Candidate) is related to these bugs:

Bug #94186: 3c59x - 10/100 NIC fails to link to gigabit switch

		In	Importance	Status
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux-source-2.6.20 (Ubuntu)	Undecided	Won't Fix
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux-source-2.6.22 (Ubuntu)	Low	Fix Released
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux (Ubuntu)	Undecided	Fix Released

Bug #125250: Don't recognise USB Pendrive -> sr0: disc change detected.

		In	Importance	Status
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu)	Undecided	Won't Fix
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Hardy)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Hardy)	Undecided	Won't Fix
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Intrepid)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Intrepid)	Undecided	Invalid
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Jaunty)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Jaunty)	Undecided	Invalid

Bug #182716: bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.

		In	Importance	Status
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Ubuntu)	Medium	Fix Released
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	Ubuntu	Undecided	Invalid
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	Linux	Undecided	Invalid
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Mandriva)	Undecided	New
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux-source-2.6.22 (Ubuntu)	Undecided	Won't Fix
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Baltix)	Undecided	New

Bug #258180: [CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow

		In	Importance	Status
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux (Ubuntu)	Low	Fix Released
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.20 (Ubuntu)	Low	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.22 (Ubuntu)	Low	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux (Ubuntu Gutsy)	Undecided	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.20 (Ubuntu Gutsy)	Undecided	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.22 (Ubuntu Gutsy)	Undecided	Fix Released
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux (Ubuntu Hardy)	Undecided	Fix Released
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.20 (Ubuntu Hardy)	Undecided	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.22 (Ubuntu Hardy)	Undecided	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux (Ubuntu Feisty)	Undecided	Invalid
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.20 (Ubuntu Feisty)	Undecided	Won't Fix
258180	[CVE-2008-3276] Linux kernel dccp_setsockopt_change() integer overflow	linux-source-2.6.22 (Ubuntu Feisty)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-3276

Related bugs and status

Related bugs

References