CVE Database
CVE-2009-1439
| Impact: | Important (classification) |
| Public: | March 26 2009 |
| Bugzilla: | 494275: CVE-2009-1439 kernel: cifs: memory overwrite when saving nativeFileSystem field during mount |
Details
The MITRE CVE dictionary describes this issue as:
Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and earlier allows remote attackers to cause a denial of service (crash) via a long nativeFileSystem field in a Tree Connect response to an SMB mount request.
Find out more about CVE-2009-1439 from the MITRE CVE dictionary and NIST NVD.
CVSS v2 metrics
| Base Score: | 7.1 | Base Metrics: | AV:N/AC:M/Au:N/C:N/I:N/A:C |
| Access Vector: | Network | Confidentiality Impact: | None |
| Access Complexity: | Medium | Integrity Impact: | None |
| Authentication: | None | Availability Impact: | Complete |
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat security errata
| Platform | Errata | Release Date |
| MRG Grid for RHEL 5 Server (kernel-rt) | RHSA-2009:1081 | June 03 2009 |
| Red Hat Enterprise Linux version 5 (kernel) | RHSA-2009:1106 | June 16 2009 |
| Red Hat Enterprise Linux version 4 (kernel) | RHSA-2009:1211 | August 13 2009 |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Red Hat Security Response Team.
