2.1

CVE-2005-3356

The mq_open system call in Linux kernel 2.6.9, in certain situations, can decrement a counter twice ("double decrement") as a result of multiple calls to the mntput function when the dentry_open function call fails, which allows local users to cause a denial of service (panic) via unspecified attack vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.9 Update2.6.20
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.43% 0.34
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/18510
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/427980/100/0/threaded
http://www.securityfocus.com/archive/1/427981/100/0/threaded
http://secunia.com/advisories/19374
http://www.debian.org/security/2006/dsa-1017
http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html
http://secunia.com/advisories/19038
http://www.mandriva.com/security/advisories?name=MDKSA-2006:040
http://secunia.com/advisories/18788
http://www.novell.com/linux/security/advisories/2006_06_kernel.html
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169130
http://rhn.redhat.com/errata/RHSA-2006-0101.html
Patch
Vendor Advisory
http://secunia.com/advisories/18527
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7c7dce9209161eb260cdf9e9172f72c3a02379e6
http://www.securityfocus.com/bid/16283
https://exchange.xforce.ibmcloud.com/vulnerabilities/25302
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10731
https://usn.ubuntu.com/244-1/