[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249982

 
 

909

 
 

195748

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2005-3783Date: (C)2005-11-23   (M)2023-12-22


The ptrace functionality (ptrace.c) in Linux kernel 2.6 before 2.6.14.2, using CLONE_THREAD, does not use the thread group ID to check whether it is attaching to itself, which allows local users to cause a denial of service (crash).

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.9
Exploit Score: 3.9
Impact Score: 6.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: COMPLETE
  
Reference:
BID-15642
SECUNIA-17761
SECUNIA-17787
SECUNIA-17917
SECUNIA-17918
SECUNIA-18203
SECUNIA-19369
SECUNIA-19374
SECUNIA-19607
20060402-01-U
DSA-1017
DSA-1018
MDKSA-2006:018
MDKSA-2006:072
SUSE-SA:2005:067
SUSE-SA:2005:068
USN-231-1
http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git%3Ba=blobdiff%3Bh=fcfc4568b45f3f190ba320b0d5853836921cb8bc%3Bhp=019e04ec065a55d8f28157d3a1f7ba06cafd347f%3Bhb=082d52c56f642d21b771a13221068d40915a1409%3Bf=kernel/ptrace.c
http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git%3Ba=commit%3Bh=082d52c56f642d21b771a13221068d40915a1409
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.14.2
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174075

CPE    36
cpe:/o:linux:linux_kernel:2.6.14
cpe:/o:linux:linux_kernel:2.6.13
cpe:/o:linux:linux_kernel:2.6.8
cpe:/o:linux:linux_kernel:2.6.12
...

© SecPod Technologies