Buffer overflow in the RTL8169 NIC driver (drivers/net/r8169.c) in the Linux kernel before 2.6.30 allows remote attackers to cause a denial of service (kernel memory corruption and crash) via a long packet.
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer’s intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Kernel | Linux | 2.6.24.7 (including) | 2.6.24.7 (including) |
| Kernel | Linux | 2.6.25.15 (including) | 2.6.25.15 (including) |
| Linux_kernel | Linux | 2.2.6 (including) | 2.2.6 (including) |
| Linux_kernel | Linux | 2.6 (including) | 2.6 (including) |
| Linux_kernel | Linux | 2.6.0 (including) | 2.6.0 (including) |
| Linux_kernel | Linux | 2.6.0-test1 (including) | 2.6.0-test1 (including) |
| Linux_kernel | Linux | 2.6.0-test10 (including) | 2.6.0-test10 (including) |
| Linux_kernel | Linux | 2.6.0-test11 (including) | 2.6.0-test11 (including) |
| Linux_kernel | Linux | 2.6.0-test2 (including) | 2.6.0-test2 (including) |
| Linux_kernel | Linux | 2.6.0-test3 (including) | 2.6.0-test3 (including) |
| Linux_kernel | Linux | 2.6.0-test4 (including) | 2.6.0-test4 (including) |
| Linux_kernel | Linux | 2.6.0-test5 (including) | 2.6.0-test5 (including) |
| Linux_kernel | Linux | 2.6.0-test6 (including) | 2.6.0-test6 (including) |
| Linux_kernel | Linux | 2.6.0-test7 (including) | 2.6.0-test7 (including) |
| Linux_kernel | Linux | 2.6.0-test8 (including) | 2.6.0-test8 (including) |
| Linux_kernel | Linux | 2.6.0-test9 (including) | 2.6.0-test9 (including) |
| Linux_kernel | Linux | 2.6.1 (including) | 2.6.1 (including) |
| Linux_kernel | Linux | 2.6.1-rc1 (including) | 2.6.1-rc1 (including) |
| Linux_kernel | Linux | 2.6.1-rc2 (including) | 2.6.1-rc2 (including) |
| Linux_kernel | Linux | 2.6.1-rc3 (including) | 2.6.1-rc3 (including) |
| Linux_kernel | Linux | 2.6.2 (including) | 2.6.2 (including) |
| Linux_kernel | Linux | 2.6.2-rc1 (including) | 2.6.2-rc1 (including) |
| Linux_kernel | Linux | 2.6.2-rc2 (including) | 2.6.2-rc2 (including) |
| Linux_kernel | Linux | 2.6.2-rc3 (including) | 2.6.2-rc3 (including) |
| Linux_kernel | Linux | 2.6.2.27.13 (including) | 2.6.2.27.13 (including) |
| Linux_kernel | Linux | 2.6.3 (including) | 2.6.3 (including) |
| Linux_kernel | Linux | 2.6.3-rc1 (including) | 2.6.3-rc1 (including) |
| Linux_kernel | Linux | 2.6.3-rc2 (including) | 2.6.3-rc2 (including) |
| Linux_kernel | Linux | 2.6.3-rc3 (including) | 2.6.3-rc3 (including) |
| Linux_kernel | Linux | 2.6.3-rc4 (including) | 2.6.3-rc4 (including) |
| Linux_kernel | Linux | 2.6.4 (including) | 2.6.4 (including) |
| Linux_kernel | Linux | 2.6.4-rc1 (including) | 2.6.4-rc1 (including) |
| Linux_kernel | Linux | 2.6.4-rc2 (including) | 2.6.4-rc2 (including) |
| Linux_kernel | Linux | 2.6.4-rc3 (including) | 2.6.4-rc3 (including) |
| Linux_kernel | Linux | 2.6.5 (including) | 2.6.5 (including) |
| Linux_kernel | Linux | 2.6.5-rc1 (including) | 2.6.5-rc1 (including) |
| Linux_kernel | Linux | 2.6.5-rc2 (including) | 2.6.5-rc2 (including) |
| Linux_kernel | Linux | 2.6.5-rc3 (including) | 2.6.5-rc3 (including) |
| Linux_kernel | Linux | 2.6.6 (including) | 2.6.6 (including) |
| Linux_kernel | Linux | 2.6.6-rc1 (including) | 2.6.6-rc1 (including) |
| Linux_kernel | Linux | 2.6.6-rc2 (including) | 2.6.6-rc2 (including) |
| Linux_kernel | Linux | 2.6.6-rc3 (including) | 2.6.6-rc3 (including) |
| Linux_kernel | Linux | 2.6.7 (including) | 2.6.7 (including) |
| Linux_kernel | Linux | 2.6.7-rc1 (including) | 2.6.7-rc1 (including) |
| Linux_kernel | Linux | 2.6.7-rc2 (including) | 2.6.7-rc2 (including) |
| Linux_kernel | Linux | 2.6.7-rc3 (including) | 2.6.7-rc3 (including) |
| Linux_kernel | Linux | 2.6.8 (including) | 2.6.8 (including) |
| Linux_kernel | Linux | 2.6.8-rc1 (including) | 2.6.8-rc1 (including) |
| Linux_kernel | Linux | 2.6.8-rc2 (including) | 2.6.8-rc2 (including) |
| Linux_kernel | Linux | 2.6.8-rc3 (including) | 2.6.8-rc3 (including) |
| Linux_kernel | Linux | 2.6.8-rc4 (including) | 2.6.8-rc4 (including) |
| Linux_kernel | Linux | 2.6.8.1 (including) | 2.6.8.1 (including) |
| Linux_kernel | Linux | 2.6.8.1.5 (including) | 2.6.8.1.5 (including) |
| Linux_kernel | Linux | 2.6.9 (including) | 2.6.9 (including) |
| Linux_kernel | Linux | 2.6.9-2.6.20 (including) | 2.6.9-2.6.20 (including) |
| Linux_kernel | Linux | 2.6.9-rc1 (including) | 2.6.9-rc1 (including) |
| Linux_kernel | Linux | 2.6.9-rc2 (including) | 2.6.9-rc2 (including) |
| Linux_kernel | Linux | 2.6.9-rc3 (including) | 2.6.9-rc3 (including) |
| Linux_kernel | Linux | 2.6.9-rc4 (including) | 2.6.9-rc4 (including) |
| Linux_kernel | Linux | 2.6.10 (including) | 2.6.10 (including) |
| Linux_kernel | Linux | 2.6.10-rc1 (including) | 2.6.10-rc1 (including) |
| Linux_kernel | Linux | 2.6.10-rc2 (including) | 2.6.10-rc2 (including) |
| Linux_kernel | Linux | 2.6.10-rc3 (including) | 2.6.10-rc3 (including) |
| Linux_kernel | Linux | 2.6.11 (including) | 2.6.11 (including) |
| Linux_kernel | Linux | 2.6.11-rc1 (including) | 2.6.11-rc1 (including) |
| Linux_kernel | Linux | 2.6.11-rc2 (including) | 2.6.11-rc2 (including) |
| Linux_kernel | Linux | 2.6.11-rc3 (including) | 2.6.11-rc3 (including) |
| Linux_kernel | Linux | 2.6.11-rc4 (including) | 2.6.11-rc4 (including) |
| Linux_kernel | Linux | 2.6.11-rc5 (including) | 2.6.11-rc5 (including) |
| Linux_kernel | Linux | 2.6.11.1 (including) | 2.6.11.1 (including) |
| Linux_kernel | Linux | 2.6.11.2 (including) | 2.6.11.2 (including) |
| Linux_kernel | Linux | 2.6.11.3 (including) | 2.6.11.3 (including) |
| Linux_kernel | Linux | 2.6.11.4 (including) | 2.6.11.4 (including) |
| Linux_kernel | Linux | 2.6.11.5 (including) | 2.6.11.5 (including) |
| Linux_kernel | Linux | 2.6.11.6 (including) | 2.6.11.6 (including) |
| Linux_kernel | Linux | 2.6.11.7 (including) | 2.6.11.7 (including) |
| Linux_kernel | Linux | 2.6.11.8 (including) | 2.6.11.8 (including) |
| Linux_kernel | Linux | 2.6.11.9 (including) | 2.6.11.9 (including) |
| Linux_kernel | Linux | 2.6.11.10 (including) | 2.6.11.10 (including) |
| Linux_kernel | Linux | 2.6.11.11 (including) | 2.6.11.11 (including) |
| Linux_kernel | Linux | 2.6.11.12 (including) | 2.6.11.12 (including) |
| Linux_kernel | Linux | 2.6.11_rc1_bk6 (including) | 2.6.11_rc1_bk6 (including) |
| Linux_kernel | Linux | 2.6.12 (including) | 2.6.12 (including) |
| Linux_kernel | Linux | 2.6.12-rc1 (including) | 2.6.12-rc1 (including) |
| Linux_kernel | Linux | 2.6.12-rc2 (including) | 2.6.12-rc2 (including) |
| Linux_kernel | Linux | 2.6.12-rc3 (including) | 2.6.12-rc3 (including) |
| Linux_kernel | Linux | 2.6.12-rc4 (including) | 2.6.12-rc4 (including) |
| Linux_kernel | Linux | 2.6.12-rc5 (including) | 2.6.12-rc5 (including) |
| Linux_kernel | Linux | 2.6.12-rc6 (including) | 2.6.12-rc6 (including) |
| Linux_kernel | Linux | 2.6.12.1 (including) | 2.6.12.1 (including) |
| Linux_kernel | Linux | 2.6.12.2 (including) | 2.6.12.2 (including) |
| Linux_kernel | Linux | 2.6.12.3 (including) | 2.6.12.3 (including) |
| Linux_kernel | Linux | 2.6.12.4 (including) | 2.6.12.4 (including) |
| Linux_kernel | Linux | 2.6.12.5 (including) | 2.6.12.5 (including) |
| Linux_kernel | Linux | 2.6.12.6 (including) | 2.6.12.6 (including) |
| Linux_kernel | Linux | 2.6.12.12 (including) | 2.6.12.12 (including) |
| Linux_kernel | Linux | 2.6.12.22 (including) | 2.6.12.22 (including) |
| Linux_kernel | Linux | 2.6.13 (including) | 2.6.13 (including) |
| Linux_kernel | Linux | 2.6.13-rc1 (including) | 2.6.13-rc1 (including) |
| Linux_kernel | Linux | 2.6.13-rc2 (including) | 2.6.13-rc2 (including) |
| Linux_kernel | Linux | 2.6.13-rc3 (including) | 2.6.13-rc3 (including) |
| Linux_kernel | Linux | 2.6.13-rc4 (including) | 2.6.13-rc4 (including) |
| Linux_kernel | Linux | 2.6.13-rc5 (including) | 2.6.13-rc5 (including) |
| Linux_kernel | Linux | 2.6.13-rc6 (including) | 2.6.13-rc6 (including) |
| Linux_kernel | Linux | 2.6.13-rc7 (including) | 2.6.13-rc7 (including) |
| Linux_kernel | Linux | 2.6.13.1 (including) | 2.6.13.1 (including) |
| Linux_kernel | Linux | 2.6.13.2 (including) | 2.6.13.2 (including) |
| Linux_kernel | Linux | 2.6.13.3 (including) | 2.6.13.3 (including) |
| Linux_kernel | Linux | 2.6.13.4 (including) | 2.6.13.4 (including) |
| Linux_kernel | Linux | 2.6.13.5 (including) | 2.6.13.5 (including) |
| Linux_kernel | Linux | 2.6.14 (including) | 2.6.14 (including) |
| Linux_kernel | Linux | 2.6.14-rc1 (including) | 2.6.14-rc1 (including) |
| Linux_kernel | Linux | 2.6.14-rc2 (including) | 2.6.14-rc2 (including) |
| Linux_kernel | Linux | 2.6.14-rc3 (including) | 2.6.14-rc3 (including) |
| Linux_kernel | Linux | 2.6.14-rc4 (including) | 2.6.14-rc4 (including) |
| Linux_kernel | Linux | 2.6.14-rc5 (including) | 2.6.14-rc5 (including) |
| Linux_kernel | Linux | 2.6.14.1 (including) | 2.6.14.1 (including) |
| Linux_kernel | Linux | 2.6.14.2 (including) | 2.6.14.2 (including) |
| Linux_kernel | Linux | 2.6.14.3 (including) | 2.6.14.3 (including) |
| Linux_kernel | Linux | 2.6.14.4 (including) | 2.6.14.4 (including) |
| Linux_kernel | Linux | 2.6.14.5 (including) | 2.6.14.5 (including) |
| Linux_kernel | Linux | 2.6.14.6 (including) | 2.6.14.6 (including) |
| Linux_kernel | Linux | 2.6.14.7 (including) | 2.6.14.7 (including) |
| Linux_kernel | Linux | 2.6.15 (including) | 2.6.15 (including) |
| Linux_kernel | Linux | 2.6.15-rc1 (including) | 2.6.15-rc1 (including) |
| Linux_kernel | Linux | 2.6.15-rc2 (including) | 2.6.15-rc2 (including) |
| Linux_kernel | Linux | 2.6.15-rc3 (including) | 2.6.15-rc3 (including) |
| Linux_kernel | Linux | 2.6.15-rc4 (including) | 2.6.15-rc4 (including) |
| Linux_kernel | Linux | 2.6.15-rc5 (including) | 2.6.15-rc5 (including) |
| Linux_kernel | Linux | 2.6.15-rc6 (including) | 2.6.15-rc6 (including) |
| Linux_kernel | Linux | 2.6.15-rc7 (including) | 2.6.15-rc7 (including) |
| Linux_kernel | Linux | 2.6.15.1 (including) | 2.6.15.1 (including) |
| Linux_kernel | Linux | 2.6.15.2 (including) | 2.6.15.2 (including) |
| Linux_kernel | Linux | 2.6.15.3 (including) | 2.6.15.3 (including) |
| Linux_kernel | Linux | 2.6.15.4 (including) | 2.6.15.4 (including) |
| Linux_kernel | Linux | 2.6.15.5 (including) | 2.6.15.5 (including) |
| Linux_kernel | Linux | 2.6.15.6 (including) | 2.6.15.6 (including) |
| Linux_kernel | Linux | 2.6.15.7 (including) | 2.6.15.7 (including) |
| Linux_kernel | Linux | 2.6.15.11 (including) | 2.6.15.11 (including) |
| Linux_kernel | Linux | 2.6.16 (including) | 2.6.16 (including) |
| Linux_kernel | Linux | 2.6.16-rc1 (including) | 2.6.16-rc1 (including) |
| Linux_kernel | Linux | 2.6.16-rc2 (including) | 2.6.16-rc2 (including) |
| Linux_kernel | Linux | 2.6.16-rc3 (including) | 2.6.16-rc3 (including) |
| Linux_kernel | Linux | 2.6.16-rc4 (including) | 2.6.16-rc4 (including) |
| Linux_kernel | Linux | 2.6.16-rc5 (including) | 2.6.16-rc5 (including) |
| Linux_kernel | Linux | 2.6.16-rc6 (including) | 2.6.16-rc6 (including) |
| Linux_kernel | Linux | 2.6.16.1 (including) | 2.6.16.1 (including) |
| Linux_kernel | Linux | 2.6.16.2 (including) | 2.6.16.2 (including) |
| Linux_kernel | Linux | 2.6.16.3 (including) | 2.6.16.3 (including) |
| Linux_kernel | Linux | 2.6.16.4 (including) | 2.6.16.4 (including) |
| Linux_kernel | Linux | 2.6.16.5 (including) | 2.6.16.5 (including) |
| Linux_kernel | Linux | 2.6.16.6 (including) | 2.6.16.6 (including) |
| Linux_kernel | Linux | 2.6.16.7 (including) | 2.6.16.7 (including) |
| Linux_kernel | Linux | 2.6.16.8 (including) | 2.6.16.8 (including) |
| Linux_kernel | Linux | 2.6.16.9 (including) | 2.6.16.9 (including) |
| Linux_kernel | Linux | 2.6.16.10 (including) | 2.6.16.10 (including) |
| Linux_kernel | Linux | 2.6.16.11 (including) | 2.6.16.11 (including) |
| Linux_kernel | Linux | 2.6.16.12 (including) | 2.6.16.12 (including) |
| Linux_kernel | Linux | 2.6.16.13 (including) | 2.6.16.13 (including) |
| Linux_kernel | Linux | 2.6.16.14 (including) | 2.6.16.14 (including) |
| Linux_kernel | Linux | 2.6.16.15 (including) | 2.6.16.15 (including) |
| Linux_kernel | Linux | 2.6.16.16 (including) | 2.6.16.16 (including) |
| Linux_kernel | Linux | 2.6.16.17 (including) | 2.6.16.17 (including) |
| Linux_kernel | Linux | 2.6.16.18 (including) | 2.6.16.18 (including) |
| Linux_kernel | Linux | 2.6.16.19 (including) | 2.6.16.19 (including) |
| Linux_kernel | Linux | 2.6.16.20 (including) | 2.6.16.20 (including) |
| Linux_kernel | Linux | 2.6.16.21 (including) | 2.6.16.21 (including) |
| Linux_kernel | Linux | 2.6.16.22 (including) | 2.6.16.22 (including) |
| Linux_kernel | Linux | 2.6.16.23 (including) | 2.6.16.23 (including) |
| Linux_kernel | Linux | 2.6.16.24 (including) | 2.6.16.24 (including) |
| Linux_kernel | Linux | 2.6.16.25 (including) | 2.6.16.25 (including) |
| Linux_kernel | Linux | 2.6.16.26 (including) | 2.6.16.26 (including) |
| Linux_kernel | Linux | 2.6.16.27 (including) | 2.6.16.27 (including) |
| Linux_kernel | Linux | 2.6.16.28 (including) | 2.6.16.28 (including) |
| Linux_kernel | Linux | 2.6.16.29 (including) | 2.6.16.29 (including) |
| Linux_kernel | Linux | 2.6.16.30 (including) | 2.6.16.30 (including) |
| Linux_kernel | Linux | 2.6.16.31 (including) | 2.6.16.31 (including) |
| Linux_kernel | Linux | 2.6.16.32 (including) | 2.6.16.32 (including) |
| Linux_kernel | Linux | 2.6.16.33 (including) | 2.6.16.33 (including) |
| Linux_kernel | Linux | 2.6.16.34 (including) | 2.6.16.34 (including) |
| Linux_kernel | Linux | 2.6.16.35 (including) | 2.6.16.35 (including) |
| Linux_kernel | Linux | 2.6.16.36 (including) | 2.6.16.36 (including) |
| Linux_kernel | Linux | 2.6.16.37 (including) | 2.6.16.37 (including) |
| Linux_kernel | Linux | 2.6.16.38 (including) | 2.6.16.38 (including) |
| Linux_kernel | Linux | 2.6.16.39 (including) | 2.6.16.39 (including) |
| Linux_kernel | Linux | 2.6.16.40 (including) | 2.6.16.40 (including) |
| Linux_kernel | Linux | 2.6.16.41 (including) | 2.6.16.41 (including) |
| Linux_kernel | Linux | 2.6.16.42 (including) | 2.6.16.42 (including) |
| Linux_kernel | Linux | 2.6.16.43 (including) | 2.6.16.43 (including) |
| Linux_kernel | Linux | 2.6.16.44 (including) | 2.6.16.44 (including) |
| Linux_kernel | Linux | 2.6.16.45 (including) | 2.6.16.45 (including) |
| Linux_kernel | Linux | 2.6.16.46 (including) | 2.6.16.46 (including) |
| Linux_kernel | Linux | 2.6.16.47 (including) | 2.6.16.47 (including) |
| Linux_kernel | Linux | 2.6.16.48 (including) | 2.6.16.48 (including) |
| Linux_kernel | Linux | 2.6.16.49 (including) | 2.6.16.49 (including) |
| Linux_kernel | Linux | 2.6.16.50 (including) | 2.6.16.50 (including) |
| Linux_kernel | Linux | 2.6.16.51 (including) | 2.6.16.51 (including) |
| Linux_kernel | Linux | 2.6.16.52 (including) | 2.6.16.52 (including) |
| Linux_kernel | Linux | 2.6.16.53 (including) | 2.6.16.53 (including) |
| Linux_kernel | Linux | 2.6.16.54 (including) | 2.6.16.54 (including) |
| Linux_kernel | Linux | 2.6.16.55 (including) | 2.6.16.55 (including) |
| Linux_kernel | Linux | 2.6.16.56 (including) | 2.6.16.56 (including) |
| Linux_kernel | Linux | 2.6.16.57 (including) | 2.6.16.57 (including) |
| Linux_kernel | Linux | 2.6.16.58 (including) | 2.6.16.58 (including) |
| Linux_kernel | Linux | 2.6.16.59 (including) | 2.6.16.59 (including) |
| Linux_kernel | Linux | 2.6.16.60 (including) | 2.6.16.60 (including) |
| Linux_kernel | Linux | 2.6.16.61 (including) | 2.6.16.61 (including) |
| Linux_kernel | Linux | 2.6.16.62 (including) | 2.6.16.62 (including) |
| Linux_kernel | Linux | 2.6.16_rc7 (including) | 2.6.16_rc7 (including) |
| Linux_kernel | Linux | 2.6.17 (including) | 2.6.17 (including) |
| Linux_kernel | Linux | 2.6.17-rc1 (including) | 2.6.17-rc1 (including) |
| Linux_kernel | Linux | 2.6.17-rc2 (including) | 2.6.17-rc2 (including) |
| Linux_kernel | Linux | 2.6.17-rc3 (including) | 2.6.17-rc3 (including) |
| Linux_kernel | Linux | 2.6.17-rc4 (including) | 2.6.17-rc4 (including) |
| Linux_kernel | Linux | 2.6.17-rc5 (including) | 2.6.17-rc5 (including) |
| Linux_kernel | Linux | 2.6.17-rc6 (including) | 2.6.17-rc6 (including) |
| Linux_kernel | Linux | 2.6.17.1 (including) | 2.6.17.1 (including) |
| Linux_kernel | Linux | 2.6.17.2 (including) | 2.6.17.2 (including) |
| Linux_kernel | Linux | 2.6.17.3 (including) | 2.6.17.3 (including) |
| Linux_kernel | Linux | 2.6.17.4 (including) | 2.6.17.4 (including) |
| Linux_kernel | Linux | 2.6.17.5 (including) | 2.6.17.5 (including) |
| Linux_kernel | Linux | 2.6.17.6 (including) | 2.6.17.6 (including) |
| Linux_kernel | Linux | 2.6.17.7 (including) | 2.6.17.7 (including) |
| Linux_kernel | Linux | 2.6.17.8 (including) | 2.6.17.8 (including) |
| Linux_kernel | Linux | 2.6.17.9 (including) | 2.6.17.9 (including) |
| Linux_kernel | Linux | 2.6.17.10 (including) | 2.6.17.10 (including) |
| Linux_kernel | Linux | 2.6.17.11 (including) | 2.6.17.11 (including) |
| Linux_kernel | Linux | 2.6.17.12 (including) | 2.6.17.12 (including) |
| Linux_kernel | Linux | 2.6.17.13 (including) | 2.6.17.13 (including) |
| Linux_kernel | Linux | 2.6.17.14 (including) | 2.6.17.14 (including) |
| Linux_kernel | Linux | 2.6.18 (including) | 2.6.18 (including) |
| Linux_kernel | Linux | 2.6.18-rc1 (including) | 2.6.18-rc1 (including) |
| Linux_kernel | Linux | 2.6.18-rc2 (including) | 2.6.18-rc2 (including) |
| Linux_kernel | Linux | 2.6.18-rc3 (including) | 2.6.18-rc3 (including) |
| Linux_kernel | Linux | 2.6.18-rc4 (including) | 2.6.18-rc4 (including) |
| Linux_kernel | Linux | 2.6.18-rc5 (including) | 2.6.18-rc5 (including) |
| Linux_kernel | Linux | 2.6.18-rc6 (including) | 2.6.18-rc6 (including) |
| Linux_kernel | Linux | 2.6.18-rc7 (including) | 2.6.18-rc7 (including) |
| Linux_kernel | Linux | 2.6.18.0 (including) | 2.6.18.0 (including) |
| Linux_kernel | Linux | 2.6.18.1 (including) | 2.6.18.1 (including) |
| Linux_kernel | Linux | 2.6.18.2 (including) | 2.6.18.2 (including) |
| Linux_kernel | Linux | 2.6.18.3 (including) | 2.6.18.3 (including) |
| Linux_kernel | Linux | 2.6.18.4 (including) | 2.6.18.4 (including) |
| Linux_kernel | Linux | 2.6.18.5 (including) | 2.6.18.5 (including) |
| Linux_kernel | Linux | 2.6.18.6 (including) | 2.6.18.6 (including) |
| Linux_kernel | Linux | 2.6.18.7 (including) | 2.6.18.7 (including) |
| Linux_kernel | Linux | 2.6.18.8 (including) | 2.6.18.8 (including) |
| Linux_kernel | Linux | 2.6.19 (including) | 2.6.19 (including) |
| Linux_kernel | Linux | 2.6.19-rc1 (including) | 2.6.19-rc1 (including) |
| Linux_kernel | Linux | 2.6.19-rc2 (including) | 2.6.19-rc2 (including) |
| Linux_kernel | Linux | 2.6.19-rc3 (including) | 2.6.19-rc3 (including) |
| Linux_kernel | Linux | 2.6.19-rc4 (including) | 2.6.19-rc4 (including) |
| Linux_kernel | Linux | 2.6.19.1 (including) | 2.6.19.1 (including) |
| Linux_kernel | Linux | 2.6.19.2 (including) | 2.6.19.2 (including) |
| Linux_kernel | Linux | 2.6.19.3 (including) | 2.6.19.3 (including) |
| Linux_kernel | Linux | 2.6.19.4 (including) | 2.6.19.4 (including) |
| Linux_kernel | Linux | 2.6.19.5 (including) | 2.6.19.5 (including) |
| Linux_kernel | Linux | 2.6.19.6 (including) | 2.6.19.6 (including) |
| Linux_kernel | Linux | 2.6.19.7 (including) | 2.6.19.7 (including) |
| Linux_kernel | Linux | 2.6.20 (including) | 2.6.20 (including) |
| Linux_kernel | Linux | 2.6.20-rc2 (including) | 2.6.20-rc2 (including) |
| Linux_kernel | Linux | 2.6.20.1 (including) | 2.6.20.1 (including) |
| Linux_kernel | Linux | 2.6.20.2 (including) | 2.6.20.2 (including) |
| Linux_kernel | Linux | 2.6.20.3 (including) | 2.6.20.3 (including) |
| Linux_kernel | Linux | 2.6.20.4 (including) | 2.6.20.4 (including) |
| Linux_kernel | Linux | 2.6.20.5 (including) | 2.6.20.5 (including) |
| Linux_kernel | Linux | 2.6.20.6 (including) | 2.6.20.6 (including) |
| Linux_kernel | Linux | 2.6.20.7 (including) | 2.6.20.7 (including) |
| Linux_kernel | Linux | 2.6.20.8 (including) | 2.6.20.8 (including) |
| Linux_kernel | Linux | 2.6.20.9 (including) | 2.6.20.9 (including) |
| Linux_kernel | Linux | 2.6.20.10 (including) | 2.6.20.10 (including) |
| Linux_kernel | Linux | 2.6.20.11 (including) | 2.6.20.11 (including) |
| Linux_kernel | Linux | 2.6.20.12 (including) | 2.6.20.12 (including) |
| Linux_kernel | Linux | 2.6.20.13 (including) | 2.6.20.13 (including) |
| Linux_kernel | Linux | 2.6.20.14 (including) | 2.6.20.14 (including) |
| Linux_kernel | Linux | 2.6.20.15 (including) | 2.6.20.15 (including) |
| Linux_kernel | Linux | 2.6.20.16 (including) | 2.6.20.16 (including) |
| Linux_kernel | Linux | 2.6.20.17 (including) | 2.6.20.17 (including) |
| Linux_kernel | Linux | 2.6.20.18 (including) | 2.6.20.18 (including) |
| Linux_kernel | Linux | 2.6.20.19 (including) | 2.6.20.19 (including) |
| Linux_kernel | Linux | 2.6.20.20 (including) | 2.6.20.20 (including) |
| Linux_kernel | Linux | 2.6.20.21 (including) | 2.6.20.21 (including) |
| Linux_kernel | Linux | 2.6.21 (including) | 2.6.21 (including) |
| Linux_kernel | Linux | 2.6.21-git1 (including) | 2.6.21-git1 (including) |
| Linux_kernel | Linux | 2.6.21-git2 (including) | 2.6.21-git2 (including) |
| Linux_kernel | Linux | 2.6.21-git3 (including) | 2.6.21-git3 (including) |
| Linux_kernel | Linux | 2.6.21-git4 (including) | 2.6.21-git4 (including) |
| Linux_kernel | Linux | 2.6.21-git5 (including) | 2.6.21-git5 (including) |
| Linux_kernel | Linux | 2.6.21-git6 (including) | 2.6.21-git6 (including) |
| Linux_kernel | Linux | 2.6.21-git7 (including) | 2.6.21-git7 (including) |
| Linux_kernel | Linux | 2.6.21-rc3 (including) | 2.6.21-rc3 (including) |
| Linux_kernel | Linux | 2.6.21-rc4 (including) | 2.6.21-rc4 (including) |
| Linux_kernel | Linux | 2.6.21-rc5 (including) | 2.6.21-rc5 (including) |
| Linux_kernel | Linux | 2.6.21-rc6 (including) | 2.6.21-rc6 (including) |
| Linux_kernel | Linux | 2.6.21-rc7 (including) | 2.6.21-rc7 (including) |
| Linux_kernel | Linux | 2.6.21.1 (including) | 2.6.21.1 (including) |
| Linux_kernel | Linux | 2.6.21.2 (including) | 2.6.21.2 (including) |
| Linux_kernel | Linux | 2.6.21.3 (including) | 2.6.21.3 (including) |
| Linux_kernel | Linux | 2.6.21.4 (including) | 2.6.21.4 (including) |
| Linux_kernel | Linux | 2.6.21.5 (including) | 2.6.21.5 (including) |
| Linux_kernel | Linux | 2.6.21.6 (including) | 2.6.21.6 (including) |
| Linux_kernel | Linux | 2.6.21.7 (including) | 2.6.21.7 (including) |
| Linux_kernel | Linux | 2.6.22 (including) | 2.6.22 (including) |
| Linux_kernel | Linux | 2.6.22-rc6 (including) | 2.6.22-rc6 (including) |
| Linux_kernel | Linux | 2.6.22.1 (including) | 2.6.22.1 (including) |
| Linux_kernel | Linux | 2.6.22.2 (including) | 2.6.22.2 (including) |
| Linux_kernel | Linux | 2.6.22.3 (including) | 2.6.22.3 (including) |
| Linux_kernel | Linux | 2.6.22.4 (including) | 2.6.22.4 (including) |
| Linux_kernel | Linux | 2.6.22.5 (including) | 2.6.22.5 (including) |
| Linux_kernel | Linux | 2.6.22.6 (including) | 2.6.22.6 (including) |
| Linux_kernel | Linux | 2.6.22.7 (including) | 2.6.22.7 (including) |
| Linux_kernel | Linux | 2.6.22.10 (including) | 2.6.22.10 (including) |
| Linux_kernel | Linux | 2.6.22.11 (including) | 2.6.22.11 (including) |
| Linux_kernel | Linux | 2.6.22.12 (including) | 2.6.22.12 (including) |
| Linux_kernel | Linux | 2.6.22.13 (including) | 2.6.22.13 (including) |
| Linux_kernel | Linux | 2.6.22.14 (including) | 2.6.22.14 (including) |
| Linux_kernel | Linux | 2.6.22.15 (including) | 2.6.22.15 (including) |
| Linux_kernel | Linux | 2.6.22.16 (including) | 2.6.22.16 (including) |
| Linux_kernel | Linux | 2.6.22.17 (including) | 2.6.22.17 (including) |
| Linux_kernel | Linux | 2.6.22.18 (including) | 2.6.22.18 (including) |
| Linux_kernel | Linux | 2.6.22.19 (including) | 2.6.22.19 (including) |
| Linux_kernel | Linux | 2.6.22.20 (including) | 2.6.22.20 (including) |
| Linux_kernel | Linux | 2.6.22.21 (including) | 2.6.22.21 (including) |
| Linux_kernel | Linux | 2.6.22.22 (including) | 2.6.22.22 (including) |
| Linux_kernel | Linux | 2.6.23 (including) | 2.6.23 (including) |
| Linux_kernel | Linux | 2.6.23-rc1 (including) | 2.6.23-rc1 (including) |
| Linux_kernel | Linux | 2.6.23-rc2 (including) | 2.6.23-rc2 (including) |
| Linux_kernel | Linux | 2.6.23.1 (including) | 2.6.23.1 (including) |
| Linux_kernel | Linux | 2.6.23.2 (including) | 2.6.23.2 (including) |
| Linux_kernel | Linux | 2.6.23.3 (including) | 2.6.23.3 (including) |
| Linux_kernel | Linux | 2.6.23.4 (including) | 2.6.23.4 (including) |
| Linux_kernel | Linux | 2.6.23.5 (including) | 2.6.23.5 (including) |
| Linux_kernel | Linux | 2.6.23.6 (including) | 2.6.23.6 (including) |
| Linux_kernel | Linux | 2.6.23.7 (including) | 2.6.23.7 (including) |
| Linux_kernel | Linux | 2.6.23.9 (including) | 2.6.23.9 (including) |
| Linux_kernel | Linux | 2.6.23.14 (including) | 2.6.23.14 (including) |
| Linux_kernel | Linux | 2.6.24-rc2 (including) | 2.6.24-rc2 (including) |
| Linux_kernel | Linux | 2.6.24-rc3 (including) | 2.6.24-rc3 (including) |
| Linux_kernel | Linux | 2.6.27-rc1 (including) | 2.6.27-rc1 (including) |
| Linux_kernel | Linux | 2.6.27-rc2 (including) | 2.6.27-rc2 (including) |
| Linux_kernel | Linux | 2.6.27-rc3 (including) | 2.6.27-rc3 (including) |
| Linux_kernel | Linux | 2.6.27-rc4 (including) | 2.6.27-rc4 (including) |
| Linux_kernel | Linux | 2.6.27-rc5 (including) | 2.6.27-rc5 (including) |
| Linux_kernel | Linux | 2.6.27-rc6 (including) | 2.6.27-rc6 (including) |
| Linux_kernel | Linux | 2.6.27-rc7 (including) | 2.6.27-rc7 (including) |
| Linux_kernel | Linux | 2.6.27-rc8 (including) | 2.6.27-rc8 (including) |
| Linux_kernel | Linux | 2.6.27-rc9 (including) | 2.6.27-rc9 (including) |
| Linux_kernel | Linux | 2.6.27.2 (including) | 2.6.27.2 (including) |
| Linux_kernel | Linux | 2.6.27.3 (including) | 2.6.27.3 (including) |
| Linux_kernel | Linux | 2.6.27.4 (including) | 2.6.27.4 (including) |
| Linux_kernel | Linux | 2.6.27.5 (including) | 2.6.27.5 (including) |
| Linux_kernel | Linux | 2.6.27.6 (including) | 2.6.27.6 (including) |
| Linux_kernel | Linux | 2.6.27.7 (including) | 2.6.27.7 (including) |
| Linux_kernel | Linux | 2.6.27.8 (including) | 2.6.27.8 (including) |
| Linux_kernel | Linux | 2.6.27.9 (including) | 2.6.27.9 (including) |
| Linux_kernel | Linux | 2.6.27.20 (including) | 2.6.27.20 (including) |
| Linux_kernel | Linux | 2.6.27.21 (including) | 2.6.27.21 (including) |
| Linux_kernel | Linux | 2.6.27.22 (including) | 2.6.27.22 (including) |
| Linux_kernel | Linux | 2.6.27.23 (including) | 2.6.27.23 (including) |
| Linux_kernel | Linux | 2.6.27.24 (including) | 2.6.27.24 (including) |
| Linux_kernel | Linux | 2.6.28 (including) | 2.6.28 (including) |
| Linux_kernel | Linux | 2.6.28-git7 (including) | 2.6.28-git7 (including) |
| Linux_kernel | Linux | 2.6.28-rc1 (including) | 2.6.28-rc1 (including) |
| Linux_kernel | Linux | 2.6.28-rc2 (including) | 2.6.28-rc2 (including) |
| Linux_kernel | Linux | 2.6.28-rc3 (including) | 2.6.28-rc3 (including) |
| Linux_kernel | Linux | 2.6.28-rc4 (including) | 2.6.28-rc4 (including) |
| Linux_kernel | Linux | 2.6.28-rc5 (including) | 2.6.28-rc5 (including) |
| Linux_kernel | Linux | 2.6.28-rc6 (including) | 2.6.28-rc6 (including) |
| Linux_kernel | Linux | 2.6.28-rc7 (including) | 2.6.28-rc7 (including) |
| Linux_kernel | Linux | 2.6.28.1 (including) | 2.6.28.1 (including) |
| Linux_kernel | Linux | 2.6.28.2 (including) | 2.6.28.2 (including) |
| Linux_kernel | Linux | 2.6.28.3 (including) | 2.6.28.3 (including) |
| Linux_kernel | Linux | 2.6.28.4 (including) | 2.6.28.4 (including) |
| Linux_kernel | Linux | 2.6.28.5 (including) | 2.6.28.5 (including) |
| Linux_kernel | Linux | 2.6.28.6 (including) | 2.6.28.6 (including) |
| Linux_kernel | Linux | 2.6.28.7 (including) | 2.6.28.7 (including) |
| Linux_kernel | Linux | 2.6.28.8 (including) | 2.6.28.8 (including) |
| Linux_kernel | Linux | 2.6.28.9 (including) | 2.6.28.9 (including) |
| Linux_kernel | Linux | 2.6.28.10 (including) | 2.6.28.10 (including) |
| Linux_kernel | Linux | 2.6.29 (including) | 2.6.29 (including) |
| Linux_kernel | Linux | 2.6.29-git1 (including) | 2.6.29-git1 (including) |
| Linux_kernel | Linux | 2.6.29-rc1 (including) | 2.6.29-rc1 (including) |
| Linux_kernel | Linux | 2.6.29-rc2 (including) | 2.6.29-rc2 (including) |
| Linux_kernel | Linux | 2.6.29-rc2_git7 (including) | 2.6.29-rc2_git7 (including) |
| Linux_kernel | Linux | 2.6.29-rc8-kk (including) | 2.6.29-rc8-kk (including) |
| Linux_kernel | Linux | 2.6.29.3 (including) | 2.6.29.3 (including) |
| Linux_kernel | Linux | 2.6.29.rc1 (including) | 2.6.29.rc1 (including) |
| Linux_kernel | Linux | 2.6.29.rc2 (including) | 2.6.29.rc2 (including) |
| Linux_kernel | Linux | 2.6.29.rc2-git1 (including) | 2.6.29.rc2-git1 (including) |
| Linux_kernel | Linux | 2.6.30-rc3 (including) | 2.6.30-rc3 (including) |
| Linux_kernel | Linux | 2.6.30-rc4 (including) | 2.6.30-rc4 (including) |
| Linux_kernel | Linux | 2.6_test9_cvs (including) | 2.6_test9_cvs (including) |
| MRG for RHEL-5 | RedHat | kernel-rt-0:2.6.24.7-126.el5rt | * |
| Red Hat Enterprise Linux 4 | RedHat | kernel-0:2.6.9-89.0.7.EL | * |
| Red Hat Enterprise Linux 4.7 Z Stream | RedHat | kernel-0:2.6.9-78.0.27.EL | * |
| Red Hat Enterprise Linux 5 | RedHat | kernel-0:2.6.18-128.4.1.el5 | * |
| Red Hat Enterprise Linux 5.2 Z Stream | RedHat | kernel-0:2.6.18-92.1.28.el5 | * |
| Red Hat Enterprise Linux 5.3.Z - Server Only | RedHat | kernel-0:2.6.18-128.4.1.el5 | * |
| Linux | Ubuntu | hardy | * |
| Linux | Ubuntu | intrepid | * |
| Linux | Ubuntu | jaunty | * |
| Linux | Ubuntu | upstream | * |
| Linux-source-2.6.15 | Ubuntu | dapper | * |
| Linux-source-2.6.15 | Ubuntu | upstream | * |
Use a language that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid.
For example, many languages that perform their own memory management, such as Java and Perl, are not subject to buffer overflows. Other languages, such as Ada and C#, typically provide overflow protection, but the protection can be disabled by the programmer.
Be wary that a language’s interface to native code may still be subject to overflows, even if the language itself is theoretically safe.
Use a vetted library or framework that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid.
Examples include the Safe C String Library (SafeStr) by Messier and Viega [REF-57], and the Strsafe.h library from Microsoft [REF-56]. These libraries provide safer versions of overflow-prone string-handling functions.
Use automatic buffer overflow detection mechanisms that are offered by certain compilers or compiler extensions. Examples include: the Microsoft Visual Studio /GS flag, Fedora/Red Hat FORTIFY_SOURCE GCC flag, StackGuard, and ProPolice, which provide various mechanisms including canary-based detection and range/index checking.
D3-SFCV (Stack Frame Canary Validation) from D3FEND [REF-1334] discusses canary-based detection in detail.
Consider adhering to the following rules when allocating and managing an application’s memory:
Run or compile the software using features or extensions that randomly arrange the positions of a program’s executable and libraries in memory. Because this makes the addresses unpredictable, it can prevent an attacker from reliably jumping to exploitable code.
Examples include Address Space Layout Randomization (ASLR) [REF-58] [REF-60] and Position-Independent Executables (PIE) [REF-64]. Imported modules may be similarly realigned if their default memory addresses conflict with other modules, in a process known as “rebasing” (for Windows) and “prelinking” (for Linux) [REF-1332] using randomly generated addresses. ASLR for libraries cannot be used in conjunction with prelink since it would require relocating the libraries at run-time, defeating the whole purpose of prelinking.
For more information on these techniques see D3-SAOR (Segment Address Offset Randomization) from D3FEND [REF-1335].
Use a CPU and operating system that offers Data Execution Protection (using hardware NX or XD bits) or the equivalent techniques that simulate this feature in software, such as PaX [REF-60] [REF-61]. These techniques ensure that any instruction executed is exclusively at a memory address that is part of the code segment.
For more information on these techniques see D3-PSEP (Process Segment Execution Prevention) from D3FEND [REF-1336].