Launchpad CVE tracker

CVE 2009-4138

drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.

Related bugs and status

CVE-2009-4138 (Candidate) is related to these bugs:

Bug #487010: ip6table modules are not included in the -virtual kernel packages

Summary				In	Importance	Status
	487010	ip6table modules are not included in the -virtual kernel packages		linux (Ubuntu)	Undecided	Invalid
	487010	ip6table modules are not included in the -virtual kernel packages		linux (Ubuntu Hardy)	Low	Fix Released

Bug #513241: please enable CONFIG_TIMER_STATS on imx51

Summary				In	Importance	Status
	513241	please enable CONFIG_TIMER_STATS on imx51		linux-fsl-imx51 (Ubuntu)	Medium	Fix Released
	513241	please enable CONFIG_TIMER_STATS on imx51		linux-fsl-imx51 (Ubuntu Lucid)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2009-4138

References