[arch-general] is arch vulnerable to the ndiswrapper exploit?
I came across this in the news today, it seems to be a pretty big security hole in ndiswrapper. "Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux kernel 2.6 allow remote attackers to execute arbitrary code by sending packets over a local wireless network that specify long ESSIDs." http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4395 https://bugs.launchpad.net/ubuntu/+source/linux/+bug/275860 Jonathan
On Thu, Nov 6, 2008 at 4:21 PM, Jonathan <eyeswide@gmail.com> wrote:
I came across this in the news today, it seems to be a pretty big security hole in ndiswrapper.
"Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux kernel 2.6 allow remote attackers to execute arbitrary code by sending packets over a local wireless network that specify long ESSIDs."
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4395 https://bugs.launchpad.net/ubuntu/+source/linux/+bug/275860
Probably. File a bug report in the bug tracker and we'll get on it
On Thu, 2008-11-06 at 16:25 -0600, Aaron Griffin wrote:
On Thu, Nov 6, 2008 at 4:21 PM, Jonathan <eyeswide@gmail.com> wrote:
I came across this in the news today, it seems to be a pretty big security hole in ndiswrapper.
"Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux kernel 2.6 allow remote attackers to execute arbitrary code by sending packets over a local wireless network that specify long ESSIDs."
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4395 https://bugs.launchpad.net/ubuntu/+source/linux/+bug/275860
Probably. File a bug report in the bug tracker and we'll get on it
ok, done: http://bugs.archlinux.org/task/12023
participants (2)
-
Aaron Griffin
-
Jonathan