CVE-2005-3783 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2005-3783
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-3783

Description: The ptrace functionality (ptrace.c) in Linux kernel 2.6 before 2.6.14.2, using CLONE_THREAD, does not use the thread group ID to check whether it is attaching to itself, which allows local users to cause a denial of service (crash).

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-231-1 SUSE http://www.securityfocus.com/advisories/9806 http://www.securityfocus.com/archive/1/archive/1/419522/100/0/threaded SGI SAID Secunia Advisory: SA17761 Secunia Advisory: SA17917 Secunia Advisory: SA17918 Secunia Advisory: SA18203 Secunia Advisory: SA17787 Secunia Advisory: SA19374 Secunia Advisory: SA19369 Secunia Advisory: SA19607 MISC MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:018 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:072 DEBIAN http://www.debian.org/security/2006/dsa-1018 http://www.debian.org/security/2006/dsa-1017 CONFIRM http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.14.2 http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git;a=blobdiff;h=fcfc4568b45f3f190ba320b0d5853836921cb8bc;hp=019e04ec065a55d8f28157d3a1f7ba06cafd347f;hb=082d52c56f642d21b771a13221068d40915a1409;f=kernel/ptrace.c http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git;a=commit;h=082d52c56f642d21b771a13221068d40915a1409 BID 15642

Return to the previous page.