Published: 09/09/2005 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The ipt_recent kernel module (ipt_recent.c) in Linux kernel prior to 2.6.12, when running on 64-bit processors such as AMD64, allows remote malicious users to cause a denial of service (kernel panic) via certain attacks such as SSH brute force, which leads to memset calls using a length based on the u_int32_t type, acting on an array of unsigned long elements, a different vulnerability than CVE-2005-2873.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.11
linux linux kernel 2.6.8.1.5
linux linux kernel 2.6.11.2
linux linux kernel 2.6.5
linux linux kernel 2.6.1
linux linux kernel 2.6.11.8
linux linux kernel 2.6.11_rc1_bk6
linux linux kernel 2.6.10
linux linux kernel 2.6.11.6
linux linux kernel 2.6.0
linux linux kernel 2.6.3
linux linux kernel 2.6.4
linux linux kernel 2.6_test9_cvs
linux linux kernel 2.6.11.5
linux linux kernel 2.6.7
linux linux kernel 2.6.2
linux linux kernel 2.6.8
linux linux kernel 2.6.11.3
linux linux kernel 2.6.6
linux linux kernel 2.6.9
linux linux kernel 2.6.11.7
linux linux kernel 2.6.8.1
linux linux kernel 2.6.11.4
linux linux kernel 2.6.11.1

Synopsis Updated kernel packages available for Red Hat Enterprise Linux 4 Update 2 Type/Severity Security Advisory: Important Topic Updated kernel packages are now available as part of ongoing supportand maintenance of Red Hat Enterprise Linux version 4 This is thesecond regular updateThis update has bee ...

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-0756 Alexander Nyberg discovered that the ptrace() system call does not properly verify addre ...

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-2302 A race condition in the sysfs filesystem allows local users to read kernel memory and ca ...

NVD-CWE-Other http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=322237 http://www.debian.org/security/2005/dsa-922 http://www.debian.org/security/2005/dsa-921 http://www.securityfocus.com/bid/14791 http://secunia.com/advisories/17918 http://secunia.com/advisories/18056 http://secunia.com/advisories/18059 http://www.redhat.com/support/errata/RHSA-2005-514.html http://secunia.com/advisories/17073 http://secunia.com/advisories/17826 http://www.mandriva.com/security/advisories?name=MDKSA-2005:220 http://www.mandriva.com/security/advisories?name=MDKSA-2005:219 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11394 http://www.securityfocus.com/archive/1/427980/100/0/threaded http://www.securityfocus.com/archive/1/419522/100/0/threaded http://www.kernel.org/git/?p=linux/kernel/git/chrisw/lsm-2.6.git%3Ba=commit%3Bh=bcfff0b471a60df350338bcd727fc9b8a6aa54b2 https://access.redhat.com/errata/RHSA-2005:514 https://nvd.nist.gov https://www.debian.org/security/./dsa-921

CVE-2005-2872

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect