VDB
CVE-2009-4138
CVE-2009-4138
PUBLISHED
Reported by redhat · Published December 16, 2009
drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Timeline
- Dec 16, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 26, 2023 EPSS Score
References
- 37339 vdb-entryx_refsource_BID
- 38276 third-party-advisoryx_refsource_SECUNIA
- oval:org.mitre.oval:def:7376 vdb-entrysignaturex_refsource_OVAL
- SUSE-SA:2010:001 vendor-advisoryx_refsource_SUSE
- x_refsource_CONFIRM
- SUSE-SA:2010:012 vendor-advisoryx_refsource_SUSE
- x_refsource_CONFIRM
- oval:org.mitre.oval:def:9527 vdb-entrysignaturex_refsource_OVAL
- x_refsource_CONFIRM
- [oss-security] 20091215 CVE-2009-4138 kernel: firewire: ohci: handle receive packets with a data length of zero mailing-listx_refsource_MLIST
- x_refsource_CONFIRM
- RHSA-2010:0095 vendor-advisoryx_refsource_REDHAT
- SUSE-SA:2010:005 vendor-advisoryx_refsource_SUSE
- RHSA-2010:0046 vendor-advisoryx_refsource_REDHAT
- DSA-2005 vendor-advisoryx_refsource_DEBIAN
- x_refsource_CONFIRM
- 38017 third-party-advisoryx_refsource_SECUNIA