Candidate: CVE-2009-2844
PublicDate: 2009-08-18 21:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2844
Description:
 cfg80211 in net/wireless/scan.c in the Linux kernel 2.6.30-rc1 and other
 versions before 2.6.31-rc6 allows remote attackers to cause a denial of
 service (crash) via a sequence of beacon frames in which one frame omits an
 SSID Information Element (IE) and the subsequent frame contains an SSID IE,
 which triggers a NULL pointer dereference in the cmp_ies function.  NOTE: a
 potential weakness in the is_mesh function was also addressed, but the
 relevant condition did not exist in the code, so it is not a vulnerability.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_linux-source-2.6.15:
upstream_linux-source-2.6.15: not-affected
dapper_linux-source-2.6.15: not-affected
hardy_linux-source-2.6.15: DNE
intrepid_linux-source-2.6.15: DNE
jaunty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_linux:
upstream_linux: released (2.6.31)
dapper_linux: DNE
hardy_linux: not-affected
intrepid_linux: not-affected
jaunty_linux: not-affected
devel_linux: not-affected (2.6.31-6.25)