CVE-2005-0135 - The unw_unwind_to_user function in unwind.c on Itanium (ia64) architectures in Linux kernel 2.6 allo

CVE-2005-0135

Summary

The unw_unwind_to_user function in unwind.c on Itanium (ia64) architectures in Linux kernel 2.6 allows local users to cause a denial of service (system crash).

References

Vulnerable Configurations

cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 11-10-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

oval via4

accepted

2013-04-29T04:18:09.628-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 3
oval oval:org.mitre.oval:def:11782
comment CentOS Linux 3.x
oval oval:org.mitre.oval:def:16651
comment The operating system installed on the system is Red Hat Enterprise Linux 4
oval oval:org.mitre.oval:def:11831
comment CentOS Linux 4.x
oval oval:org.mitre.oval:def:16636
comment Oracle Linux 4.x
oval oval:org.mitre.oval:def:15990

description

The unw_unwind_to_user function in unwind.c on Itanium (ia64) architectures in Linux kernel 2.6 allows local users to cause a denial of service (system crash).

family

unix

oval:org.mitre.oval:def:9040

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.

version

redhat via4

advisories

rhsa
id RHSA-2005:284
rhsa
id RHSA-2005:293
rhsa
id RHSA-2005:366

rpms

kernel-0:2.4.21-27.0.4.EL
kernel-BOOT-0:2.4.21-27.0.4.EL
kernel-debuginfo-0:2.4.21-27.0.4.EL
kernel-doc-0:2.4.21-27.0.4.EL
kernel-hugemem-0:2.4.21-27.0.4.EL
kernel-hugemem-unsupported-0:2.4.21-27.0.4.EL
kernel-smp-0:2.4.21-27.0.4.EL
kernel-smp-unsupported-0:2.4.21-27.0.4.EL
kernel-source-0:2.4.21-27.0.4.EL
kernel-unsupported-0:2.4.21-27.0.4.EL
kernel-0:2.6.9-5.0.5.EL
kernel-debuginfo-0:2.6.9-5.0.5.EL
kernel-devel-0:2.6.9-5.0.5.EL
kernel-doc-0:2.6.9-5.0.5.EL
kernel-hugemem-0:2.6.9-5.0.5.EL
kernel-hugemem-devel-0:2.6.9-5.0.5.EL
kernel-smp-0:2.6.9-5.0.5.EL
kernel-smp-devel-0:2.6.9-5.0.5.EL

refmap via4

bid	13266
confirm	http://linux.bkbits.net:8080/linux-2.6/cset@41f2beablXVnAs_6fznhhITh1j5hZg https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=148868
debian	DSA-1067 DSA-1069 DSA-1070 DSA-1082
secunia	15019 20163 20202 20338

Last major update

11-10-2017 - 01:29

Published

02-05-2005 - 04:00

Last modified

11-10-2017 - 01:29