CVE-2005-2459 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-2459
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-2459

Description: The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 returns the wrong value, which allows remote attackers to cause a denial of service (kernel crash) via a certain compressed file that leads to a null pointer dereference, a different vulnerbility than CVE-2005-2458.

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-169-1 SUSE http://www.securityfocus.com/archive/1/archive/1/419522/100/0/threaded http://www.novell.com/linux/security/advisories/2005_50_kernel.html SAID Secunia Advisory: SA18059 Secunia Advisory: SA18056 Secunia Advisory: SA16355 Secunia Advisory: SA16500 Secunia Advisory: SA17918 Secunia Advisory: SA17826 MISC http://bugs.gentoo.org/show_bug.cgi?id=94584 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:220 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219 MANDRAKE http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:220 DEBIAN http://www.debian.org/security/2005/dsa-921 http://www.debian.org/security/2005/dsa-922 CONFIRM http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.12.5 BID 14720

Return to the previous page.