Red Hat Customer Portal

Skip to main content

CVE-2008-2812

Impact:
Moderate
Public Date:
2008-04-30
Bugzilla:
453419: CVE-2008-2812 kernel: NULL ptr dereference in multiple network drivers due to missing checks in tty code

The MITRE CVE dictionary describes this issue as:

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.

Find out more about CVE-2008-2812 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (kernel) RHSA-2008:0612 2008-08-04
Red Hat Enterprise Linux 3 (kernel) RHSA-2008:0973 2008-12-17
Red Hat Enterprise Linux 4 (kernel) RHSA-2008:0665 2008-07-24

Last Modified