CVE-2009-4005

Linux kernel <2.6.32-rc7 - Buffer Under-read

Title source: llm
STIX 2.1

Description

The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.

References (19)

Core 19
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2010/dsa-2005
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38276
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:030
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/37036
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/54310
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-864-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37720
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37909
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11155
Patch, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3267
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38017

Scores

EPSS 0.0042
EPSS Percentile 34.0%

Details

CWE
CWE-119
Status published
Products (50)
linux/linux_kernel 2.6.0
linux/linux_kernel 2.6.1
linux/linux_kernel 2.6.2
linux/linux_kernel 2.6.3
linux/linux_kernel 2.6.4
linux/linux_kernel 2.6.5
linux/linux_kernel 2.6.6
linux/linux_kernel 2.6.7
linux/linux_kernel 2.6.8
linux/linux_kernel 2.6.8.1
... and 40 more
Published Nov 20, 2009
Tracked Since Feb 18, 2026