Linux Kernel ROSE multiple vulnerabilities

Some vulnerabilities have been reported in the Linux Kernel.

These can be exploited by malicious, local users to cause a Denial of Service and potentially gain escalated privileges, according to Secunia.

The vulnerabilities are caused due to various errors within the implementation of the ROSE protocol and can be exploited to e.g. cause memory corruptions via specially crafted FAC_CCITT_DEST_NSAP or FAC_CCITT_SRC_NSAP fields.

Solution: Restrict access to trusted users only. Do not use the ROSE protocol.

More about

Don't miss