Wind River Support Network

HomeOther DownloadsSecurity Advisory - Linux kernel -CVE-2008-2358
Recommended Type: Patch

Security Advisory - Linux kernel -CVE-2008-2358

Released: Jul 8, 2008     Updated: Jul 8, 2008


The Datagram Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.18, and probably other versions, does not properly check feature lengths, which might allow remote attackers to execute arbitrary code, related to an unspecified "overflow." IDENTIFIER = WIND00125730

Product Version

Linux Platforms 2.0


Installation Notes

Installation Notes is for 2.0

1. Unzip the patch under [install_dir]/updates

2. Install the patch CD by entering the patch CD directory and run setup_linux.

3. This is a source only patch so you will have to build the kernel

4. Issue a make fs and make the kernel in a configured directory.

5. Upload the kernel and rootfs into the target and boot it up.

Live chat