CVE-2009-0322

Linux kernel <2.6.27.13, 2.6.28.x <2.6.28.2 - DoS

Title source: llm

Description

drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.x before 2.6.28.2, allows local users to cause a denial of service (system crash) via a read system call that specifies zero bytes from the (1) image_type or (2) packet_size file in /sys/devices/platform/dell_rbu/.

References (32)

[Patch] http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git%3Ba=commit%3Bh=81156928f8fe31621e467490b9d441c0285998c3

[Vendor Advisory] http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.13

[Vendor Advisory] http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.2

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00003.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.html

[Third Party Advisory] http://secunia.com/advisories/33656

[Third Party Advisory] http://secunia.com/advisories/33758

[Third Party Advisory] http://secunia.com/advisories/34252

[Third Party Advisory] http://secunia.com/advisories/34394

[Third Party Advisory] http://secunia.com/advisories/34502

[Third Party Advisory] http://secunia.com/advisories/34680

[Third Party Advisory] http://secunia.com/advisories/34762

[Third Party Advisory] http://secunia.com/advisories/34981

[Third Party Advisory] http://secunia.com/advisories/35011

[Third Party Advisory] http://secunia.com/advisories/35390

[Third Party Advisory] http://secunia.com/advisories/35394

[Third Party Advisory] http://secunia.com/advisories/37471

[Third Party Advisory] http://support.avaya.com/elmodocs2/security/ASA-2009-114.htm

[Third Party Advisory] http://www.debian.org/security/2009/dsa-1749

... and 12 more

Scores

EPSS 0.0008

EPSS Percentile 23.4%

Classification

CWE

CWE-399 CWE-189

Status draft

Affected Products (6)

linux/linux_kernel < 2.6.27.13

debian/debian_linux

debian/debian_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

Timeline

Published Jan 28, 2009

Tracked Since Feb 18, 2026