Upstream information
Description
The ftdi_sio driver (usb/serial/ftdi_sio.c) in Linux kernel 2.6.x up to 2.6.17, and possibly later versions, allows local users to cause a denial of service (memory consumption) by writing more data to the serial port than the hardware can handle, which causes the data to be queued.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
| National Vulnerability Database | |
|---|---|
| Base Score | 7.8 |
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
| Access Vector | Network |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Complete |
SUSE Security Advisories:
- SUSE-SA:2007:018, published Tue, 27 Feb 2007 14:00:00 +0000
- SUSE-SA:2007:021, published Fri, 16 Mar 2007 13:00:00 +0000
- SUSE-SA:2007:030, published Thu, 10 May 2007 11:00:00 +0000
- SUSE-SA:2007:035, published Thu, 14 Jun 2007 16:00:00 +0000
SUSE Timeline for this CVE
CVE page created: Fri Jun 28 03:12:19 2013CVE page last modified: Fri Dec 8 16:16:39 2023