Lucene search

[email protected]CVE-2005-2456

HistoryAug 04, 2005 - 4:00 a.m.

CVE-2005-2456

2005-08-0404:00:00

CWE-667

[email protected]

web.nvd.nist.gov

cve-2005-2456

array index overflow

xfrm_sk_policy_insert

linux kernel 2.6

denial of service

arbitrary code

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

46.6%

JSON

Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OUT, which is used as an index in the sock->sk_policy array.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.0
debian:debian_linuxdebian debian linuxeq3.1

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.0
debian:debian_linux	debian debian linux	eq	3.1

References

secunia.com/advisories/16298

secunia.com/advisories/16500

secunia.com/advisories/17002

secunia.com/advisories/17073

secunia.com/advisories/17826

secunia.com/advisories/18056

secunia.com/advisories/18059

www.debian.org/security/2005/dsa-921

www.debian.org/security/2005/dsa-922

www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=blobdiff%3Bh=8da3e25b2c4c1f305fd85428d3a9eb62b543bfba%3Bhp=ecade4893a139cc35d4fe345ce70242ede5358c4%3Bhb=a4f1bac62564049ea4718c4624b0fadc9f597c84%3Bf=net/xfrm/xfrm_user.c

www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a4f1bac62564049ea4718c4624b0fadc9f597c84

www.mail-archive.com/netdev%40vger.kernel.org/msg00520.html

www.mandriva.com/security/advisories?name=MDKSA-2005:219

www.mandriva.com/security/advisories?name=MDKSA-2005:220

www.novell.com/linux/security/advisories/2005_50_kernel.html

www.redhat.com/support/errata/RHSA-2005-514.html

www.redhat.com/support/errata/RHSA-2005-663.html

www.securityfocus.com/archive/1/427980/100/0/threaded

www.securityfocus.com/bid/14477

www.vupen.com/english/advisories/2005/1878

exchange.xforce.ibmcloud.com/vulnerabilities/21710

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10858