Double free vulnerability in the snd_seq_oss_open function in sound/core/seq/oss/seq_oss_init.c in the Linux kernel before 2.6.36-rc4 might allow local users to cause a denial of service or possibly have unspecified other impact via an unsuccessful attempt to open the /dev/sequencer device.
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | 2.6.36 (excluding) |
Linux_kernel | Linux | 2.6.36 (including) | 2.6.36 (including) |
Linux_kernel | Linux | 2.6.36-rc1 (including) | 2.6.36-rc1 (including) |
Linux_kernel | Linux | 2.6.36-rc2 (including) | 2.6.36-rc2 (including) |
Linux_kernel | Linux | 2.6.36-rc3 (including) | 2.6.36-rc3 (including) |