Description
Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x through 2.6.31, when the appletalk and ipddp modules are loaded but the ipddp"N" device is not found, allows remote attackers to cause a denial of service (memory consumption) via IP-DDP datagrams.
Affected products
- Canonical / Ubuntu Linux6.06 – 6.06
- Canonical / Ubuntu Linux9.04 – 9.04
- Canonical / Ubuntu Linux8.10 – 8.10
- Canonical / Ubuntu Linux8.04 – 8.04
- Linux / Linux kernel2.4.0 – 2.4.37.6
- SUSE / linux_enterprise_debuginfo10 – 10
- SUSE / linux_enterprise_debuginfo10 – 10
- SUSE / linux_enterprise_desktop10 – 10
- SUSE / linux_enterprise_desktop10 – 10
- SUSE / linux_enterprise_server9 – 9
- SUSE / linux_enterprise_server10 – 10
- SUSE / linux_enterprise_server10 – 10
- SUSE / linux_enterprise_software_development_kit10 – 10
- SUSE / linux_enterprise_software_development_kit10 – 10
References
- MAILING_LISThttp://www.openwall.com/lists/oss-security/2009/09/17/11
- MISChttp://www.securityfocus.com/bid/36379
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html
- VENDOR_ADVISORYhttp://www.ubuntu.com/usn/USN-852-1
- VENDOR_ADVISORYhttp://secunia.com/advisories/36707
- MISChttps://bugzilla.redhat.com/show_bug.cgi?id=522331
- VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDVSA-2009:329
- MAILING_LISThttp://www.openwall.com/lists/oss-security/2009/09/14/1
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/37909
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html
- MISChttp://git.kernel.org/?p=linux/kernel/git/davem/net-next-2.6.git%3Ba=commit%3Bh=ffcfb8db540ff879c2a85bf7e404954281443414
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/37105
- MAILING_LISThttp://www.openwall.com/lists/oss-security/2009/09/14/2