CVE-2004-0565 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-0565
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0565

Description: Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/16644 SAID Secunia Advisory: SA20162 Secunia Advisory: SA20163 Secunia Advisory: SA20202 Secunia Advisory: SA20338 REDHAT http://www.redhat.com/support/errata/RHSA-2004-504.html MLIST http://archives.neohapsis.com/archives/linux/owl/2004-q2/0038.html MISC MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:066 DEBIAN http://www.debian.org/security/2006/dsa-1082 http://www.debian.org/security/2006/dsa-1069 http://www.debian.org/security/2006/dsa-1070 http://www.debian.org/security/2006/dsa-1067 BID 10687

Return to the previous page.