CVE-2009-2909

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.31.2

Description: The issue is related to an integer signedness error in the ax25 setsockopt function, which is part of the ax25 subsystem. This error can be triggered by a local user who provides a crafted optlen value in an SO BINDTODEVICE operation, leading to a denial of service (OOPS).

Recommendations: For Linux kernel versions prior to 2.6.31.2, update to version 2.6.31.2 or later to resolve the issue.