| Name | CVE-2004-0109 |
| Description | Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| References | DSA-479, DSA-480, DSA-481, DSA-482, DSA-489, DSA-491, DSA-495 |
The information below is based on the following data on fixed versions.
- kernel-source-2.4.27 <not-affected> (Fixed before upload into archive; 2.4.26-rc4)
- linux-2.6 <not-affected> (fixed before first upload; 2.6.6)