CVE-2007-1357

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.5", "name": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.5", "tags": [], "refsource": "CONFIRM"}, {"url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235857", "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235857", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/23376", "name": "23376", "tags": ["Patch"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/24793", "name": "24793", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "https://issues.rpath.com/browse/RPL-1244", "name": "https://issues.rpath.com/browse/RPL-1244", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/24901", "name": "24901", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2007/dsa-1286", "name": "DSA-1286", "tags": [], "refsource": "DEBIAN"}, {"url": "http://lists.suse.com/archive/suse-security-announce/2007-May/0001.html", "name": "SUSE-SA:2007:029", "tags": [], "refsource": "SUSE"}, {"url": "http://secunia.com/advisories/25078", "name": "25078", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/25099", "name": "25099", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.novell.com/linux/security/advisories/2007_30_kernel.html", "name": "SUSE-SA:2007:030", "tags": [], "refsource": "SUSE"}, {"url": "http://www.securityfocus.com/archive/1/471457", "name": "20070615 rPSA-2007-0124-1 kernel xen", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.debian.org/security/2007/dsa-1304", "name": "DSA-1304", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.novell.com/linux/security/advisories/2007_35_kernel.html", "name": "SUSE-SA:2007:035", "tags": [], "refsource": "SUSE"}, {"url": "http://www.novell.com/linux/security/advisories/2007_43_kernel.html", "name": "SUSE-SA:2007:043", "tags": [], "refsource": "SUSE"}, {"url": "http://www.ubuntu.com/usn/usn-464-1", "name": "USN-464-1", "tags": [], "refsource": "UBUNTU"}, {"url": "http://secunia.com/advisories/25392", "name": "25392", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/25683", "name": "25683", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/25714", "name": "25714", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/25691", "name": "25691", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/25961", "name": "25961", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/25226", "name": "25226", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2007/1340", "name": "ADV-2007-1340", "tags": [], "refsource": "VUPEN"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before 2.6.21, and possibly 2.4.x, allows remote attackers to cause a denial of service (crash) via an AppleTalk frame that is shorter than the specified length, which triggers a BUG_ON call when an attempt is made to perform a checksum."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-1357", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "severity": "HIGH", "impactScore": 6.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-04-11T00:19Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.6.20.4"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2011-03-08T02:51Z"}