CVE-2004-0619

5 documents5 sources
Severity
7.2HIGH
EPSS
0.1%
top 78.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Redhat Fedora CoreRedhat KernelRedhat Linux
Timeline
PublishedDec 6
Latest updateApr 29

Description

Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages3 packages

NVDredhat/linux8.0
NVDredhat/kernel2.4.20-8
NVDredhat/fedora_corecore_1.0

Patches

Patch: www.redhat.comPatch: www.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-g9v2-9ccx-44qr: Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and p2022-04-29
CVEList
CVE-2004-0619: Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and p2004-06-30

📋Vendor Advisories

1
Red Hat
security flaw2004-06-23

💬Community

1
Bugzilla
CVE-2004-0619 security flaw2018-08-16
CVE-2004-0619 (HIGH CVSS 7.2) | Integer overflow in the ubsec_keyse | cvebase.io