https://bugzilla.novell.com/show_bug.cgi?id=465629 Summary: VUL-0: zaptel: indexing array out of bounds Classification: openSUSE Product: openSUSE 11.2 Version: unspecified Platform: Other OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: Other AssignedTo: max@novell.com ReportedBy: thomas@novell.com QAContact: qa@suse.de CC: security-team@suse.de Found By: Other Hello, found this debian advisory: - ------------------------------------------------------------------------ Debian Security Advisory DSA-1699-1 security@debian.org http://www.debian.org/security/ Florian Weimer January 11, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : zaptel Vulnerability : array index error Problem type : local Debian-specific: no CVE Id(s) : CVE-2008-5396 CVE-2008-5744 Debian Bug : 507459 510583 An array index error in zaptel, a set of drivers for telephony hardware, could allow users to crash the system or escalate their privileges by overwriting kernel memory (CVE-2008-5396). For the stable distribution (etch), this problem has been fixed in version 1.2.11.dfsg-1+etch1. For the unstable distribution (sid) and the testing distribution (lenny), this problem has been fixed in version 1.4.11~dfsg-3. We recommend that you upgrade your zaptel package. Upgrade instructions - -------------------- .. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.