Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3271

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-3271
Last Modified 07 Mar 2011 09:26:11
Published 20 Oct 2005 09:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-3271

Summary

Exec in Linux kernel 2.6 does not properly clear posix-timers in multi-threaded environments, which results in a resource leak and could allow a large number of multiple local users to cause a denial of service by using more posix-timers than specified by the quota for a single user.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.0


References

CONFIRM - http://linux.bkbits.net:8080/linux-2.6/cset@414b332fsZQvEUsfzKJIo-q2_ZH0hg

MLIST - [linux-kernel] 20040911 [PATCH] exec: fix posix-timers leak and pending signal loss

MANDRAKE - MDKSA-2005:219

UBUNTU - USN-219-1

BID - 15533

SUSE - SUSE-SA:2005:067

MANDRAKE - MDKSA-2005:218

DEBIAN - DSA-922

SECUNIA - 18056

SECUNIA - 17917

SECUNIA - 17826


Last Updated: 27 May 2016 10:40:52