CVE-2004-0495

Summary: CVE-2004-0495 refers to multiple vulnerabilities in Linux kernel 2.4 and 2.6, identified by the Sparse source-checking tool, that can allow local privilege escalation or access to kernel memory. Affected software: Linux kernel for 2.4 and 2.6 series. Root cause/impact: local attacker cou...

CVE-2004-0554

CVE-2004-0554 affects the Linux kernel (2.4.x and 2.6.x on x86). The root cause is a local-denial-of-service condition triggered by an infinite loop that abuses a sequence of fsave/frstor instructions in a signal handler (as demonstrated by crash.c). The practical impact is a system crash/DoS wit...

CVE-2004-0535

CVE-2004-0535 relates to the Linux kernel's e1000 NIC driver (2.4.x and earlier) where memory used by the driver was not properly initialized before access. This could permit a local attacker to read portions of kernel memory. The issue is documented and linked to several vendor advisories (e.g.,...

CVE-2004-0496

The CVE-2004-0496 entry refers to multiple local vulnerabilities in the Linux kernel 2.6, distinct from CVE-2004-0495, discovered via Sparse. Connected sources (Gentoo GLSA advisories GLSA-200407-02 and GLSA-200407-16, OpenVAS NASLs, and NVD/NVD-style listings) corroborate that CAN-2004-0496 conc...

CVE-2004-0461

ISC DHCPD 3.0.1rc12/rc13 contains two buffer overflow risks: when vsnprintf support is absent, header files map vsnprintf to the unsafe vsprintf, enabling possible DoS (server crash) and potentially arbitrary code execution. The issue affects the DHCP server component in ISC DHCP 3.0.1rc12/rc13 a...

CVE-2004-0460

ISC DHCP 3.0.1rc12 and 3.0.1rc13 are affected by a buffer overflow in the DHCPD logging path when processing multiple hostname options in DISCOVER/OFFER/REQUEST/ACK/NAK, potentially enabling remote code execution and denial of service. The issue stems from long hostname options being concatenated...