The console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate attackers to cause a denial of service (memory corruption) by selecting a small number of 3-byte UTF-8 characters, which triggers an "off-by-two memory error." NOTE: it is not clear whether this issue crosses privilege boundaries.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 2.0 | 4.7 | MEDIUM | AV:L/AC:M/Au:N/C:N/I:N/A:C |
This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and 5. It was addressed in Red Hat Enterprise MRG via: https://rhn.redhat.com/errata/RHSA-2009-0451.html .
| Hyperlink | Source | Resource |
|---|---|---|
| http://lists.openwall.net/linux-kernel/2009/01/30/333 | cve@mitre.org | Patch |
| http://lists.openwall.net/linux-kernel/2009/02/02/364 | cve@mitre.org | Patch |
| http://secunia.com/advisories/34917 | cve@mitre.org | N/A |
| http://secunia.com/advisories/34981 | cve@mitre.org | N/A |
| http://secunia.com/advisories/35121 | cve@mitre.org | N/A |
| http://www.debian.org/security/2009/dsa-1787 | cve@mitre.org | N/A |
| http://www.debian.org/security/2009/dsa-1800 | cve@mitre.org | N/A |
| http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.4 | cve@mitre.org | N/A |
| http://www.openwall.com/lists/oss-security/2009/02/12/10 | cve@mitre.org | N/A |
| http://www.openwall.com/lists/oss-security/2009/02/12/11 | cve@mitre.org | N/A |
| http://www.openwall.com/lists/oss-security/2009/02/12/9 | cve@mitre.org | N/A |
| http://www.redhat.com/support/errata/RHSA-2009-0451.html | cve@mitre.org | N/A |
| http://www.securityfocus.com/bid/33672 | cve@mitre.org | Patch |
| http://www.ubuntu.com/usn/usn-751-1 | cve@mitre.org | N/A |