Bug#411294: Not exploitable over ISDN

To: 411294@bugs.debian.org
Cc: control@bugs.debian.org
Subject: Bug#411294: Not exploitable over ISDN
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Tue, 27 Feb 2007 23:43:32 +0100
Message-id: <[🔎] 20070227224332.GA3556@galadriel.inutil.org>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 411294@bugs.debian.org

severity 411294 important
thanks

Analysis by Karsten Keil (the Linux ISDN maintainer) pointed out, that this
is not exploitable over the ISDN network, as the generated CAPI messages
cannot reach a size allowing an overflow.

This could only be theoretically exploited if there's a pure CAPI server
and even then it's only DoS.

So there's no need to treat this as an RC bug.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Processed: Not exploitable over ISDN
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Processed: Not exploitable over ISDN
Next by Date: Bug#324510: marked as done (initrd size too small for d-i)
Previous by thread: Bug#412749: linux-image-2.6.18-4-sparc64: Kernel unaligned access in eth1394_reset_priv
Next by thread: Processed: Not exploitable over ISDN
Index(es):
- Date
- Thread