SUSE CVE-2005-2492

The rawsendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a denial of service change hardware state or read from arbitrary memory via crafted input...

[Full-disclosure] MDKSA-2005:235 - Updated kernel packages fix numerous vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2005:235 http://www.mandriva.com/security/ Package : kernel Date : December 21, 2005 Affected: 2006.0 Problem Description: Multiple vulnerabilities in the Linux 2.6 kernel have been discovered and corrected in th...

Fedora Core 3 : kernel-2.6.12-1.1378_FC3 (2005-905)

Wed Sep 14 2005 Dave Jones 2.6.12-1.1378FC3 - Fixes for CVE-2005-2490 and CVE-2005-2492 - Mon Sep 5 2005 Dave Jones - Fix aic7xxx issue with 4GB. 167049 - Fri Sep 2 2005 Dave Jones 2.6.12-1.1377FC3 - Various post 2.6.13 ACPI updates. 20050902 - Mon Aug 29 2005 Dave Jones - Fix local builds when...

Fedora Core 4 : kernel-2.6.12-1.1456_FC4 (2005-906)

Thu Sep 22 2005 Dave Jones 2.6.12-1.1456FC4 - Disable crash driver on Xen kernels. - Wed Sep 14 2005 Dave Jones 2.6.12-1.1455FC4 - Fixes for CVE-2005-2490 and CVE-2005-2492 - Thu Sep 8 2005 Rik van Riel - upgrade to a newer Xen snapshot - exclude Xen TPM bits, since those conflict with 2.6.12.5 -...

CVE-2005-2492

CVE-2005-2492 affects the Linux kernel 2.6 series prior to 2.6.13.1. The raw_sendmsg function can be exploited by a local user to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input. Documented in multiple advisories (e.g., Mandriva MDKSA-2005:235; SU...