[arch-general] is arch vulnerable to the ndiswrapper exploit?
Jonathan
eyeswide at gmail.com
Thu Nov 6 17:36:17 EST 2008
On Thu, 2008-11-06 at 16:25 -0600, Aaron Griffin wrote:
> On Thu, Nov 6, 2008 at 4:21 PM, Jonathan <eyeswide at gmail.com> wrote:
> > I came across this in the news today, it seems to be a pretty big
> > security hole in ndiswrapper.
> >
> > "Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux
> > kernel 2.6 allow remote attackers to execute arbitrary code by sending
> > packets over a local wireless network that specify long ESSIDs."
> >
> > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4395
> > https://bugs.launchpad.net/ubuntu/+source/linux/+bug/275860
>
> Probably. File a bug report in the bug tracker and we'll get on it
ok, done:
http://bugs.archlinux.org/task/12023
More information about the arch-general
mailing list