Published: 16/08/2005 Updated: 07/11/2023

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAP_NET_ADMIN capability, which could allow local users to conduct unauthorized activities via (1) ipv4/ip_sockglue.c and (2) ipv6/ipv6_sockglue.c.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian debian linux 3.1
linux linux kernel 2.6.11
linux linux kernel 2.6.8.1.5
linux linux kernel 2.6.12
linux linux kernel 2.6.11.2
linux linux kernel 2.6.5
linux linux kernel 2.6.1
linux linux kernel 2.6.11.8
linux linux kernel 2.6.11_rc1_bk6
linux linux kernel 2.6.10
linux linux kernel 2.6.11.6
linux linux kernel 2.6.0
linux linux kernel 2.6.3
linux linux kernel 2.6.4
linux linux kernel 2.6_test9_cvs
linux linux kernel 2.6.11.5
linux linux kernel 2.6.7
linux linux kernel 2.6.2
linux linux kernel 2.6.8
linux linux kernel 2.6.11.3
linux linux kernel 2.6.6
linux linux kernel 2.6.9
linux linux kernel 2.6.11.7
linux linux kernel 2.6.8.1
linux linux kernel 2.6.11.4
linux linux kernel 2.6.11.1

David Howells discovered a local Denial of Service vulnerability in the key session joining function Under certain user-triggerable conditions, a semaphore was not released properly, which caused processes which also attempted to join a key session to hang forever This only affects Ubuntu 504 (Hoary Hedgehog) (CAN-2005-2098) ...

Synopsis Updated kernel packages available for Red Hat Enterprise Linux 4 Update 2 Type/Severity Security Advisory: Important Topic Updated kernel packages are now available as part of ongoing supportand maintenance of Red Hat Enterprise Linux version 4 This is thesecond regular updateThis update has bee ...

Synopsis Updated kernel packages available for Red Hat Enterprise Linux 3 Update 6 Type/Severity Security Advisory: Important Topic Updated kernel packages are now available as part of ongoing support andmaintenance of Red Hat Enterprise Linux version 3 This is the sixthregular updateThis security adviso ...

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-1017 Multiple overflows exist in the io_edgeport driver which might be usable as a denial of ...

The original update lacked recompiled ALSA modules against the new kernel ABI Furthermore, kernel-latest-24-sparc now correctly depends on the updated packages For completeness we're providing the original problem description: Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service ...

CWE-264 http://www.novell.com/linux/security/advisories/2005_50_kernel.html http://www.securityfocus.com/bid/14609 http://www.redhat.com/support/errata/RHSA-2005-514.html http://www.redhat.com/support/errata/RHSA-2005-663.html http://www.debian.org/security/2006/dsa-1017 http://secunia.com/advisories/17073 http://secunia.com/advisories/17826 http://www.debian.org/security/2006/dsa-1018 http://secunia.com/advisories/19374 http://secunia.com/advisories/19369 http://secunia.com/advisories/17002 http://www.mandriva.com/security/advisories?name=MDKSA-2005:218 http://www.vupen.com/english/advisories/2005/1878 http://www.mandriva.com/security/advisories?name=MDKSA-2005:219 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10444 https://usn.ubuntu.com/169-1/http://www.securityfocus.com/archive/1/427980/100/0/threaded http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=6fc0b4a7a73a81e74d0004732df358f4f9975be2 http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6fc0b4a7a73a81e74d0004732df358f4f9975be2 https://usn.ubuntu.com/169-1/https://nvd.nist.gov

CVE-2005-2555

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect