Published: 21/10/2005 Updated: 07/11/2023

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

The sys_get_thread_area function in process.c in Linux 2.6 prior to 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.11
linux linux kernel 2.6.11.2
linux linux kernel 2.6.5
linux linux kernel 2.6.11.10
linux linux kernel 2.6.1
linux linux kernel 2.6.13
linux linux kernel 2.6.11.8
linux linux kernel 2.6.10
linux linux kernel 2.6.11.6
linux linux kernel 2.6.11.11
linux linux kernel 2.6.3
linux linux kernel 2.6.4
linux linux kernel 2.6.11.5
linux linux kernel 2.6.2
linux linux kernel 2.6.8
linux linux kernel 2.6.12.1
linux linux kernel 2.6.11.9
linux linux kernel 2.6.0
linux linux kernel 2.6.12.2
linux linux kernel 2.6.12.4
linux linux kernel 2.6.11.3
linux linux kernel 2.6.12.3
linux linux kernel 2.6.7
linux linux kernel 2.6.9
linux linux kernel 2.6.11.7
linux linux kernel 2.6.8.1
linux linux kernel 2.6.11.4
linux linux kernel 2.6.11.12
linux linux kernel 2.6.11.1
linux linux kernel 2.6.6
linux linux kernel 2.6.12

Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in the Red HatEnterprise Linux 4 kernel are now available This security advisory has been rated as having important security impactby the Red Hat Security Response Team ...

The problem can be corrected by updating your system to the following package versions: ...

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-2302 A race condition in the sysfs filesystem allows local users to read kernel memory and ca ...

NVD-CWE-Other http://lkml.org/lkml/2005/8/3/36 http://www.securityfocus.com/bid/15527 http://www.debian.org/security/2005/dsa-922 http://secunia.com/advisories/18056 http://www.redhat.com/support/errata/RHSA-2006-0101.html http://secunia.com/advisories/18510 http://www.redhat.com/support/errata/RHSA-2006-0144.html http://secunia.com/advisories/19252 http://secunia.com/advisories/17826 http://www.mandriva.com/security/advisories?name=MDKSA-2005:218 http://www.mandriva.com/security/advisories?name=MDKSA-2005:220 http://www.mandriva.com/security/advisories?name=MDKSA-2005:219 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9748 https://usn.ubuntu.com/219-1/http://www.securityfocus.com/archive/1/428058/100/0/threaded http://www.securityfocus.com/archive/1/428028/100/0/threaded http://www.securityfocus.com/archive/1/427980/100/0/threaded http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=71ae18ec690953e9ba7107c7cc44589c2cc0d9f1 http://linux.bkbits.net:8080/linux-2.6/cset%4042e81864gSEM90Oun0jA8dufpM3inw https://access.redhat.com/errata/RHSA-2006:0101 https://usn.ubuntu.com/219-1/https://nvd.nist.gov

CVE-2005-3276

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect