CVE-2010-2954 (retired)

Priority
Description
The irda_bind function in net/irda/af_irda.c in the Linux kernel before
2.6.36-rc3-next-20100901 does not properly handle failure of the
irda_open_tsap function, which allows local users to cause a denial of
service (NULL pointer dereference and panic) and possibly have unspecified
other impact via multiple unsuccessful calls to bind on an AF_IRDA (aka
PF_IRDA) socket.
Ubuntu-Description
Tavis Ormandy discovered that the IRDA subsystem did not correctly shut
down. A local attacker could exploit this to cause the system to crash or
possibly gain root privileges.
Assigned-to
sconklin
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
More Information

Updated: 2019-03-26 11:52:38 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)