CVE-2009-0798

ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to cause a denial of service (CPU consumption and connectivity loss) by opening a large number of UNIX sockets without closing them, which triggers an infinite loop.

Affected Software

Name	Vendor	Start Version	End Version
Acpid	Tim_hockin	*	1.0.8 (including)
Acpid	Tim_hockin	0.99.0 (including)	0.99.0 (including)
Acpid	Tim_hockin	0.99.1 (including)	0.99.1 (including)
Acpid	Tim_hockin	0.99.4 (including)	0.99.4 (including)
Acpid	Tim_hockin	1.0.0 (including)	1.0.0 (including)
Acpid	Tim_hockin	1.0.1 (including)	1.0.1 (including)
Acpid	Tim_hockin	1.0.2 (including)	1.0.2 (including)
Acpid	Tim_hockin	1.0.3 (including)	1.0.3 (including)
Acpid	Tim_hockin	1.0.4 (including)	1.0.4 (including)
Acpid	Tim_hockin	1.0.6 (including)	1.0.6 (including)
Acpid	Tim_hockin	20010510 (including)	20010510 (including)
Red Hat Enterprise Linux 2.1	RedHat	acpid-0:1.0.1-3	*
Red Hat Enterprise Linux 3	RedHat	acpid-0:1.0.2-4	*
Red Hat Enterprise Linux 4	RedHat	acpid-0:1.0.3-2.el4_7.1	*
Red Hat Enterprise Linux 5	RedHat	acpid-0:1.0.4-7.el5_3.1	*
Acpid	Ubuntu	dapper	*
Acpid	Ubuntu	devel	*
Acpid	Ubuntu	gutsy	*
Acpid	Ubuntu	hardy	*
Acpid	Ubuntu	intrepid	*
Acpid	Ubuntu	jaunty	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-0798
CWE	https://cwe.mitre.org/data/definitions/399.html

Affected Software

References