Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-60-0
HistoryJan 14, 2005 - 12:00 a.m.

Linux kernel vulnerabilities

2005-01-1400:00:00
ubuntu.com
31

6.4 Medium

AI Score

Confidence

Low

0.106 Low

EPSS

Percentile

95.0%

JSON

Releases

  • Ubuntu 4.10

Details

CAN-2005-0001:

Paul Starzetz discovered a race condition in the Linux page fault
handler code. This allowed an unprivileged user to gain root
privileges on multiprocessor machines under some circumstances.
This also affects the Hyper-Threading mode on Pentium 4 processors.

<http://lists.netsys.com/pipermail/full-disclosure/2005-January/030660.html&gt;:

Brad Spengler discovered that some device drivers used
copy_from_user() (a function to copy data from userspace tools into
kernel memory) with insufficient input validation. This potentially
allowed users and/or malicious hardware to overwrite kernel memory
which could result in a crash (Denial of Service) or even root
privilege escalation.

Additionally, this update corrects the SMB file system driver.
USN-30-1 fixed some vulnerabilities in this driver (see CAN-2004-0883,
CAN-2004-0949). However, it was found that these new validation checks
were too strict, which cause some valid operations to fail.

Related

nessus 16
openvas 11
securityvulns 1
ubuntu 1
cve 3
cvelist 3
ubuntucve 3
checkpoint_advisories 1
cert 1
suse 2
redhat 7
debian 5
osv 4
nessus
nessus
Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-60-0)
2006-01-15 00:00:00
Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-30-1)
2006-01-15 00:00:00
RHEL 2.1 / 3 : openmotif (RHSA-2004:537)
2004-12-13 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-60-0)
2022-08-26 00:00:00
Ubuntu: Security Advisory (USN-30-1)
2022-08-26 00:00:00
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
securityvulns
securityvulns
Advisory 14/2004: Linux 2.x smbfs multiple remote vulnerabilities
2004-11-18 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2004-11-19 00:00:00
cve
cve
CVE-2004-0883
2005-01-10 05:00:00
CVE-2004-0949
2005-01-10 05:00:00
CVE-2005-0001
2005-05-02 04:00:00
cvelist
cvelist
CVE-2004-0883
2004-12-01 05:00:00
CVE-2004-0949
2004-12-01 05:00:00
CVE-2005-0001
2005-01-19 05:00:00
ubuntucve
ubuntucve
CVE-2004-0949
2005-01-10 00:00:00
CVE-2004-0883
2005-01-10 00:00:00
CVE-2005-0001
2005-05-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Linux Kernel SMB Filesystem smb_receive Transaction2 - Ver2 (CVE-2004-0949)
2014-12-28 00:00:00
cert
cert
SMB filesystem read system call vulnerable to buffer overflow
2005-02-02 00:00:00
suse
suse
local and remote denial of service in kernel
2004-12-01 14:31:07
local privilege escalation in kernel
2005-01-21 15:09:06
redhat
redhat
(RHSA-2004:505) Updated kernel packages fix security vulnerability
2004-12-13 00:00:00
(RHSA-2004:549) kernel security update
2004-12-02 00:00:00
(RHSA-2004:504) Updated Itanium kernel packages resolve security issues
2004-12-13 00:00:00
debian
debian
[SECURITY] [DSA 1069-1] New Linux kernel 2.4.18 packages fix several vulnerabilities
2006-05-21 00:00:00
[SECURITY] [DSA 1069-1] New Linux kernel 2.4.18 packages fix several vulnerabilities
2006-05-20 00:00:00
[SECURITY] [DSA 1082-1] New Linux kernel 2.4.17 packages fix several vulnerabilities
2006-05-29 00:00:00
osv
osv
kernel-source-2.4.16 - several
2006-05-20 00:00:00
kernel-source-2.4.18 - several
2006-05-20 00:00:00
kernel-source-2.4.17 - several vulnerabilities
2006-05-29 00:00:00

6.4 Medium

AI Score

Confidence

Low

0.106 Low

EPSS

Percentile

95.0%

JSON
Related for USN-60-0
nessus16openvas11securityvulns1ubuntu1cve3cvelist3ubuntucve3checkpoint_advisories1cert1suse2redhat7debian5osv4