Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3055

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-3055
Last Modified 07 Mar 2011 09:25:41
Published 26 Sep 2005 03:03:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-3055

Summary

Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS) via a userspace process that issues a USB Request Block (URB) to a USB device and terminates before the URB is finished, which leads to a stale pointer reference.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.10

  • Linux Kernel 2.6.11

  • Linux Kernel 2.6.11.11

  • Linux Kernel 2.6.11.5

  • Linux Kernel 2.6.11.6

  • Linux Kernel 2.6.11.7

  • Linux Kernel 2.6.11.8

  • Linux Kernel 2.6.12

  • Linux Kernel 2.6.12.1

  • Linux Kernel 2.6.12.2

  • Linux Kernel 2.6.12.3

  • Linux Kernel 2.6.12.4

  • Linux Kernel 2.6.12.5

  • Linux Kernel 2.6.13

  • Linux Kernel 2.6.13.1

  • Linux Kernel 2.6.13.2

  • Linux Kernel 2.6.14

  • Linux Kernel 2.6.8

  • Linux Kernel 2.6.9


References

VUPEN - ADV-2005-1863

MANDRAKE - MDKSA-2005:220

MANDRAKE - MDKSA-2005:219

UBUNTU - USN-219-1

BID - 14955

SUSE - SUSE-SA:2005:068

SUSE - SUSE-SA:2005:067

REDHAT - RHSA-2006:0580

REDHAT - RHSA-2006:0579

REDHAT - RHSA-2006:0575

REDHAT - RHSA-2006:0437

MANDRIVA - MDKSA-2005:235

MANDRAKE - MDKSA-2005:218

DEBIAN - DSA-1017

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm

SECUNIA - 22417

SECUNIA - 21983

SECUNIA - 21465

SECUNIA - 21136

SECUNIA - 21035

SECUNIA - 19374

SECUNIA - 17918

SECUNIA - 17917

SECUNIA - 17826

MLIST - [linux-kernel] 20050925 [BUG/PATCH/RFC] Oops while completing async USB via usbdevio


Last Updated: 27 May 2016 10:40:47