CVE-2009-3080

Description

Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request.

Affected products

Canonical / Ubuntu Linux9.10 – 9.10
Canonical / Ubuntu Linux9.04 – 9.04
Canonical / Ubuntu Linux8.10 – 8.10
Canonical / Ubuntu Linux8.04 – 8.04
Canonical / Ubuntu Linux6.06 – 6.06
Debian / debian_linux4.0 – 4.0
Linux / Linux kernel2.6.31.6
Linux / Linux kernel2.6.32 – 2.6.32
Linux / Linux kernel2.6.32 – 2.6.32
Linux / Linux kernel2.6.32 – 2.6.32
Linux / Linux kernel2.6.32 – 2.6.32
Linux / Linux kernel2.6.32 – 2.6.32
openSUSE / opensuse11.2 – 11.2
openSUSE / opensuse11.1 – 11.1
RedHat / enterprise_linux_desktop5.0 – 5.0
RedHat / enterprise_linux_eus5.4 – 5.4
RedHat / enterprise_linux_server5.0 – 5.0
RedHat / enterprise_linux_server_workstation5.0 – 5.0
RedHat / fedora10 – 10
RedHat / virtualization5.0 – 5.0
SUSE / linux_enterprise_desktop10 – 10
SUSE / linux_enterprise_desktop10 – 10
SUSE / linux_enterprise_server10 – 10
SUSE / linux_enterprise_server10 – 10
VMware / esx3.5 – 3.5

CVE-2009-3080

Description

Affected products

References