Main Vulnerability Database SB2007042701

SB2007042701 - Gentoo update for capi4k-utils

Published: April 27, 2007 Updated: April 24, 2025

Security Bulletin ID SB2007042701

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Memory corruption (CVE-ID: CVE-2007-1217)

The vulnerability allows a local user to execute arbitrary code.

Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.

Remediation

Install update from vendor's website.

References

https://security.gentoo.org/glsa/200704-23