CVE-2005-3784 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2005-3784
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-3784

Description: The auto-reap of child processes in Linux kernel 2.6 before 2.6.15 includes processes with ptrace attached, which leads to a dangling ptrace reference and allows local users to cause a denial of service (crash) and gain root privileges.

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-231-1 TRUSTIX http://www.trustix.org/errata/2005/0070 SUSE http://www.securityfocus.com/advisories/9806 http://www.securityfocus.com/archive/1/archive/1/419522/100/0/threaded SAID Secunia Advisory: SA19374 Secunia Advisory: SA17787 Secunia Advisory: SA18510 Secunia Advisory: SA18203 Secunia Advisory: SA17918 Secunia Advisory: SA17917 Secunia Advisory: SA17786 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0101.html MISC MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:018 FEDORA http://www.securityfocus.com/archive/1/archive/1/427981/100/0/threaded DEBIAN http://www.debian.org/security/2006/dsa-1017 CONFIRM http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7ed0175a462c4c30f6df6fac1cccac058f997739 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/439623/100/100/threaded BID 15625

Return to the previous page.