CVE-2004-0658

IEEE 1394 <2.6 - Buffer Overflow

Title source: llm

Description

Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via the functions (1) raw1394_write, (2) state_connected, (3) handle_remote_request, or (4) hpsb_make_writebpacket.

References (2)

[Mailing List] http://marc.info/?l=bugtraq&m=108793792820740

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/16480

Scores

EPSS 0.0007

EPSS Percentile 20.4%

Classification

Status draft

Affected Products (50)

linux/linux_kernel

... and 35 more

Timeline

Published Aug 06, 2004

Tracked Since Feb 18, 2026