CVE-2007-1353

Publication date 24 April 2007

Last updated 24 July 2024

Ubuntu priority

The setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent attackers to read kernel memory and obtain sensitive information via unspecified vectors involving the copy_from_user function accessing an uninitialized stack buffer.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux-source-2.6.15	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Fixed 2.6.15-29.58
linux-source-2.6.17	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.6.17.1-12.40
	6.06 LTS dapper	Not in release
linux-source-2.6.20	7.04 feisty	Fixed 2.6.20-16.31
	6.10 edgy	Not in release
	6.06 LTS dapper	Not in release

References

Related Ubuntu Security Notices (USN)

USN-489-1
Linux kernel vulnerabilities
19 July 2007

USN-470-1
Linux kernel vulnerabilities
8 June 2007

USN-486-1
Linux kernel vulnerabilities
18 July 2007

Other references

https://www.cve.org/CVERecord?id=CVE-2007-1353