Resource Management Errors

CVE-2009-4138

Medium

4.7/10

Summary

drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.

Access Complexity: MEDIUM
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: NONE
Availability Impact: COMPLETE

CWE-399 - Resource Management Errors

Resource management errors is not a weakness in and of itself, rather it is a category of weaknesses related to improper management of system resources. If not addressed, the weaknesses in this category can lead to unexpected software behavior, loss of access, file modification, sensitive information disclosure, system crash, denial of service, and code execution.

References

Advisory Timeline

Published Dec 16, 2009

Resource Management Errors

CVE-2009-4138

Summary

CWE-399 - Resource Management Errors

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS