Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Fedora_core | Redhat | core_1.0 (including) | core_1.0 (including) |
Linux | Redhat | 8.0 (including) | 8.0 (including) |
Red Hat Enterprise Linux 3 | RedHat | kernel-0:2.4.21-20.0.1.EL | * |
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
Red Hat Enterprise Linux WS version 2.1 | RedHat | * |