Vulnerability CVE-2007-3513: Information

Description

The lcd_write function in drivers/usb/misc/usblcd.c in the Linux kernel before 2.6.22-rc7 does not limit the amount of memory used by a caller, which allows local users to cause a denial of service (memory consumption).

Severity: MEDIUM (4.9)

URL: https://nvd.nist.gov/vuln/detail/CVE-2007-3513

Published: July 3, 2007

Modified: Sept. 29, 2017

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
usbip	sisyphus	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed
usbip	sisyphus_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7452-1	-	Fixed
usbip	p10	5.10-alt1	5.10-alt1	ALT-PU-2023-1903-1	320461	Fixed
usbip	p10_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7498-1	-	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.22-rc7
DSA-1356
MDKSA-2007:196
MDKSA-2007:195
RHSA-2007:0940
SUSE-SA:2007:051
SUSE-SA:2007:053
USN-489-1
USN-510-1
USN-509-1
24734
25895
26139
26450
26643
27322
26664
27212
27227
ADV-2007-2403
37116
kernel-lcdwrite-dos(35302)
oval:org.mitre.oval:def:9883

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:rc6:*:*:*:*:*:*
  End including
  2.6.22

Version: v24.4.2

Vulnerability CVE-2007-3513: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1