Published: 23/11/2005 Updated: 07/11/2023

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 436

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

The auto-reap of child processes in Linux kernel 2.6 prior to 2.6.15 includes processes with ptrace attached, which leads to a dangling ptrace reference and allows local users to cause a denial of service (crash) and gain root privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.11
linux linux kernel 2.6.11.2
linux linux kernel 2.6.11.10
linux linux kernel 2.6.1
linux linux kernel 2.6.14.7
linux linux kernel 2.6.13
linux linux kernel 2.6.13.3
linux linux kernel 2.6.11.8
linux linux kernel 2.6.14.4
linux linux kernel 2.6.14
linux linux kernel 2.6.10
linux linux kernel 2.6.14.3
linux linux kernel 2.6.11.6
linux linux kernel 2.6.11.11
linux linux kernel 2.6.11.5
linux linux kernel 2.6.14.5
linux linux kernel 2.6.13.2
linux linux kernel 2.6.13.5
linux linux kernel 2.6.14.1
linux linux kernel 2.6.12.5
linux linux kernel 2.6.14.6
linux linux kernel 2.6.12.1
linux linux kernel 2.6.11.9
linux linux kernel 2.6.0
linux linux kernel 2.6.13.4
linux linux kernel 2.6.12.2
linux linux kernel 2.6.12.4
linux linux kernel 2.6.11.3
linux linux kernel 2.6.12.3
linux linux kernel 2.6.12.6
linux linux kernel 2.6.11.7
linux linux kernel 2.6.14.2
linux linux kernel 2.6.11.4
linux linux kernel 2.6.11.12
linux linux kernel 2.6.11.1
linux linux kernel 2.6.13.1
linux linux kernel 2.6.12

Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in the Red HatEnterprise Linux 4 kernel are now available This security advisory has been rated as having important security impactby the Red Hat Security Response Team ...

Rudolf Polzer reported an abuse of the ‘loadkeys’ command By redefining one or more keys and tricking another user (like root) into logging in on a text console and typing something that involves the redefined keys, a local user could cause execution of arbitrary commands with the privileges of the target user The updated kernel restrict ...

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-1017 Multiple overflows exist in the io_edgeport driver which might be usable as a denial of ...

CWE-399 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174078 http://www.securityfocus.com/bid/15625 http://secunia.com/advisories/17786 http://www.securityfocus.com/advisories/9806 http://www.trustix.org/errata/2005/0070 http://secunia.com/advisories/17917 http://secunia.com/advisories/17918 http://secunia.com/advisories/18203 http://www.redhat.com/support/errata/RHSA-2006-0101.html http://secunia.com/advisories/18510 http://secunia.com/advisories/17787 http://www.debian.org/security/2006/dsa-1017 http://secunia.com/advisories/19374 http://www.mandriva.com/security/advisories?name=MDKSA-2006:018 http://www.vupen.com/english/advisories/2005/2649 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9080 https://usn.ubuntu.com/231-1/http://www.securityfocus.com/archive/1/439623/100/100/threaded http://www.securityfocus.com/archive/1/427981/100/0/threaded http://www.securityfocus.com/archive/1/419522/100/0/threaded http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7ed0175a462c4c30f6df6fac1cccac058f997739 https://access.redhat.com/errata/RHSA-2006:0101 https://usn.ubuntu.com/231-1/https://nvd.nist.gov

CVE-2005-3784

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect