SB2009102902 - Improper input validation in Linux kernel

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper input validation (CVE-ID: CVE-2009-3640)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation error. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• http://marc.info/?l=oss-security&m=125640417219385&w=2
• http://www.securityfocus.com/bid/36805
• http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc1
• http://marc.info/?l=oss-security&m=125626965020571&w=2
• https://exchange.xforce.ibmcloud.com/vulnerabilities/53947
• http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=88c808fd42b53a7e01a2ac3253ef31fef74cb5af