Candidate: CVE-2009-2846
PublicDate: 2009-08-18 21:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2846
 https://ubuntu.com/security/notices/USN-852-1
Description:
 The eisa_eeprom_read function in the parisc isa-eeprom component
 (drivers/parisc/eisa_eeprom.c) in the Linux kernel before 2.6.31-rc6 allows
 local users to access restricted memory via a negative ppos argument, which
 bypasses a check that assumes that ppos is positive and causes an
 out-of-bounds read in the readb function.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_linux-source-2.6.15:
upstream_linux-source-2.6.15: needs-triage
dapper_linux-source-2.6.15: released (2.6.15-55.80)
hardy_linux-source-2.6.15: DNE
intrepid_linux-source-2.6.15: DNE
jaunty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_linux:
upstream_linux: needs-triage
dapper_linux: DNE
hardy_linux: released (2.6.24-25.63)
intrepid_linux: released (2.6.27-15.43)
jaunty_linux: released (2.6.28-16.55)
devel_linux: not-affected