Re: CVE-2007-5448 remote denial of service via crafted beacon frame

To: 446824@bugs.debian.org
Cc: debian-release@lists.debian.org
Subject: Re: CVE-2007-5448 remote denial of service via crafted beacon frame
From: Luk Claes <luk@debian.org>
Date: Sun, 30 Dec 2007 00:01:31 +0100
Message-id: <[🔎] 20071229230131.GA14754@station.luk.local>
In-reply-to: <20071015223731.GA32380@ngolde.de>
References: <20071015223731.GA32380@ngolde.de>

On Tue, Oct 16, 2007 at 12:37:31AM +0200, Nico Golde wrote:
> Package: madwifi-source
> Severity: grave
> Tags: security patch
> 
> Hi,
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for madwifi-source.
> 
> CVE-2007-5448[0]:
> | Madwifi 0.9.3.2 and earlier allows remote attackers to cause a denial
> | of service (panic) via a beacon frame with a large length value in the
> | extended supported rates (xrates) element, which triggers an assertion
> | error, related to net80211/ieee80211_scan_ap.c and
> | net80211/ieee80211_scan_sta.c.
> 
> If you fix this vulnerability please also include the CVE id
> in your changelog entry.
> 
> This is fixed in upstream svn on:
> http://madwifi.org/changeset/2736
> 
> For further information:
> [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5448

Can you please upload a fixed package to stable?

Cheers

Luk

Reply to:

Follow-Ups:
- Re: CVE-2007-5448 remote denial of service via crafted beacon frame
  - From: Faidon Liambotis <paravoid@debian.org>

Prev by Date: Re: hint request: complearn-gui
Next by Date: Re: (CVE-2007-0855) Preparation of the next stable Debian GNU/Linux update
Previous by thread: Re: hint request: complearn-gui
Next by thread: Re: CVE-2007-5448 remote denial of service via crafted beacon frame
Index(es):
- Date
- Thread