Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0529

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-0529
Last Modified 21 Aug 2010 12:26:18
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0529

Summary

Linux kernel 2.6.10 and 2.6.11rc1-bk6 uses different size types for offset arguments to the proc_file_read and locks_read_proc functions, which leads to a heap-based buffer overflow when a signed comparison causes negative integers to be used in a positive context.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.10

  • Linux Kernel 2.6.11 Rc1 Bk6


References

MISC - http://www.guninski.com/where_do_you_want_billg_to_go_today_3.html

FULLDISC - 20050215 linux kernel 2.6 fun. windoze is a joke

SUSE - SUSE-SA:2005:018

BUGTRAQ - 20050315 [USN-95-1] Linux kernel vulnerabilities

CONFIRM - http://linux.bkbits.net:8080/linux-2.6/cset@4201818eC6aMn0x3GY_9rw3ueb2ZWQ

CONECTIVA - CLA-2005:930

REDHAT - RHSA-2005:366


Last Updated: 27 May 2016 10:39:50