|
|
CVE Reference: CVE-2005-4618 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-4618 |
|
|
Description: Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl is called from a userland program that provides the argument, this might not be a vulnerability, unless a legitimate user-assisted or setuid scenario can be identified. |
|
|
CVE Status: Candidate |
|
|
References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-244-1 SAID Secunia Advisory: SA18527 Secunia Advisory: SA19369 Secunia Advisory: SA18216 Secunia Advisory: SA19374 MISC http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15 http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8febdd85adaa41fa1fc1cb31286210fc2cd3ed0c http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:040 DEBIAN http://www.debian.org/security/2006/dsa-1018 http://www.debian.org/security/2006/dsa-1017 BID 16141 |
|
| Return to the previous page. |
