CVE-2005-2456 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-2456
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-2456

Description: Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OUT, which is used as an index in the sock->sk_policy array.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/21710 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-169-1 SUSE http://www.novell.com/linux/security/advisories/2005_50_kernel.html SAID Secunia Advisory: SA17002 Secunia Advisory: SA16298 Secunia Advisory: SA16500 Secunia Advisory: SA18056 Secunia Advisory: SA18059 Secunia Advisory: SA17073 Secunia Advisory: SA17826 REDHAT http://www.redhat.com/support/errata/RHSA-2005-663.html http://www.redhat.com/support/errata/RHSA-2005-514.html MISC http://www.mail-archive.com/netdev@vger.kernel.org/msg00520.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:220 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219 MANDRAKE http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:220 FEDORA http://www.securityfocus.com/archive/1/archive/1/427980/100/0/threaded DEBIAN http://www.debian.org/security/2005/dsa-922 http://www.debian.org/security/2005/dsa-921 CONFIRM http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=blobdiff;h=8da3e25b2c4c1f305fd85428d3a9eb62b543bfba;hp=ecade4893a139cc35d4fe345ce70242ede5358c4;hb=a4f1bac62564049ea4718c4624b0fadc9f597c84;f=net/xfrm/xfrm_user.c http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a4f1bac62564049ea4718c4624b0fadc9f597c84 BID 14477

Return to the previous page.