| Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them. |
|
 |
|
|
|
vulnerability note CVE-2010-0561
NetBSD: denial of service via azalia/hdaudio
Synthesis of the vulnerability
| A local attacker can query the azalia and hdaudio drivers, in order to stop the system. |
Severity: 1/4.
Creation date: 03/02/2010.
|
Description of the vulnerability
The azalia/hdaudio driver of the NetBSD kernel implements the support of Intel High Definition audio devices.
The azalia_query_devinfo() function of azalia.c and the hdaudio_afg_query_devinfo() function of hdaudio.c implement the query_devinfo interface of the audio_hw_if structure:
x_query_devinfo(void *opaque, mixer_devinfo_t *mdev);
These functions are called when the user wants information on the device.
However, if the mdev->index field is negative, these functions try to read information on a mixer with an index outside the array. This forces a read at an invalid memory address.
A local attacker can therefore query the azalia and hdaudio drivers, in order to stop the system. |
Complete Vigil@nce bulletin
Characteristics
Title: NetBSD: denial of service via azalia/hdaudio.
Keywords: Definition High Intel NetBSD audio_hw_if azalia azalia_query_devinfo denial hdaudio hdaudio_afg_query_devinfo mixer_devinfo_t query_devinfo service x_query_devinfo.
Identifiers: BID-38057, CVE-2010-0561, NetBSD-SA2010-003, VIGILANCE-VUL-9404.
|
Information sources
Solutions for this vulnerability
Computer vulnerabilities tracking service
The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.
The Vigil@nce vulnerability database contains several thousand vulnerabilities.
This bulletin is published by the Vigil@nce team, which tracks computer vulnerabilities impacting systems and applications.
Computer vulnerability database
|
