CVE-2008-4933

Name of the Vulnerable Software and Affected Versions linux-headers-2.6.18-6 versions 2.6.18-6 and earlier linux-image-2.6.18-6 versions 2.6.18-6 and earlier linux-modules-2.6.18-6 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-686-bigmem versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha-generic versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha-legacy versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-footbridge versions 2.6.18-6 and earlier linux-headers-2.6.18-6-iop32x versions 2.6.18-6 and earlier linux-headers-2.6.18-6-itanium versions 2.6.18-6 and earlier linux-headers-2.6.18-6-k7 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-mckinley versions 2.6.18-6 and earlier linux-headers-2.6.18-6-parisc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-parisc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-parisc64-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc-miboot versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-qemu versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r3k-kn02 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r4k-ip22 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r4k-kn04 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r5k-cobalt versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r5k-ip32 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-s390 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-s390x versions 2.6.18-6 and earlier linux-headers-2.6.18-6-s3c2410 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sb1-bcm91250a versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sb1a-bcm91480b versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sparc32 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sparc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sparc64-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-alpha versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-k7 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-powerpc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-powerpc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-s390x versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-sparc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-vserver versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-vserver-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-vserver-amd64 versions 2.6.18-6 and earlier

Description The issue is related to multiple vulnerabilities in the Linux kernel, specifically in the hfsplus filesystem. A buffer overflow in the hfsplus find cat function can be exploited, leading to a denial of service (memory corruption or system crash) via an hfsplus filesystem image with an invalid catalog namelength field. The vulnerabilities can be exploited remotely.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.