CVE-2003-0699

Description

The C-Media PCI sound driver in Linux before 2.4.21 does not use the get_user function to access userspace, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0700.

Affected products

• RedHat / enterprise_linux2.1 – 2.1
• RedHat / linux_advanced_workstation2.1 – 2.1

References

• MISChttp://www.redhat.com/support/errata/RHSA-2003-238.html
• MISChttp://www.redhat.com/support/errata/RHSA-2003-198.html
• MISChttp://www.redhat.com/support/errata/RHSA-2003-239.html
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A387