The console selection feature in the Linux kernel 2.6.28 prior to 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate malicious users to cause a denial of service (memory corruption) by selecting a small number of 3-byte UTF-8 characters, which triggers an "off-by-two memory error." NOTE: it is not clear whether this issue crosses privilege boundaries.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 2.6.28 |
||
linux linux kernel 2.6.28.1 |
||
linux linux kernel 2.6.28.2 |
||
linux linux kernel 2.6.28.3 |
||
linux linux kernel 2.6.25 |