4.9

CVE-2005-3784

The auto-reap of child processes in Linux kernel 2.6 before 2.6.15 includes processes with ptrace attached, which leads to a dangling ptrace reference and allows local users to cause a denial of service (crash) and gain root privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.0
LinuxLinux Kernel Version2.6.1
LinuxLinux Kernel Version2.6.10
LinuxLinux Kernel Version2.6.11
LinuxLinux Kernel Version2.6.11.1
LinuxLinux Kernel Version2.6.11.2
LinuxLinux Kernel Version2.6.11.3
LinuxLinux Kernel Version2.6.11.4
LinuxLinux Kernel Version2.6.11.5
LinuxLinux Kernel Version2.6.11.6
LinuxLinux Kernel Version2.6.11.7
LinuxLinux Kernel Version2.6.11.8
LinuxLinux Kernel Version2.6.11.9
LinuxLinux Kernel Version2.6.11.10
LinuxLinux Kernel Version2.6.11.11
LinuxLinux Kernel Version2.6.11.12
LinuxLinux Kernel Version2.6.12
LinuxLinux Kernel Version2.6.12.1
LinuxLinux Kernel Version2.6.12.2
LinuxLinux Kernel Version2.6.12.3
LinuxLinux Kernel Version2.6.12.4
LinuxLinux Kernel Version2.6.12.5
LinuxLinux Kernel Version2.6.12.6
LinuxLinux Kernel Version2.6.13
LinuxLinux Kernel Version2.6.13.1
LinuxLinux Kernel Version2.6.13.2
LinuxLinux Kernel Version2.6.13.3
LinuxLinux Kernel Version2.6.13.4
LinuxLinux Kernel Version2.6.13.5
LinuxLinux Kernel Version2.6.14
LinuxLinux Kernel Version2.6.14.1
LinuxLinux Kernel Version2.6.14.2
LinuxLinux Kernel Version2.6.14.3
LinuxLinux Kernel Version2.6.14.4
LinuxLinux Kernel Version2.6.14.5
LinuxLinux Kernel Version2.6.14.6
LinuxLinux Kernel Version2.6.14.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.45% 0.356
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/18510
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2006-0101.html
http://www.securityfocus.com/archive/1/427981/100/0/threaded
http://secunia.com/advisories/19374
Vendor Advisory
http://www.debian.org/security/2006/dsa-1017
http://secunia.com/advisories/17918
Vendor Advisory
http://www.securityfocus.com/archive/1/419522/100/0/threaded
http://secunia.com/advisories/17917
Vendor Advisory
http://www.securityfocus.com/advisories/9806
http://secunia.com/advisories/18203
Vendor Advisory
https://usn.ubuntu.com/231-1/
http://www.mandriva.com/security/advisories?name=MDKSA-2006:018
http://secunia.com/advisories/17787
http://secunia.com/advisories/17786
Vendor Advisory
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7ed0175a462c4c30f6df6fac1cccac058f997739
http://www.securityfocus.com/archive/1/439623/100/100/threaded
http://www.securityfocus.com/bid/15625
http://www.trustix.org/errata/2005/0070
http://www.vupen.com/english/advisories/2005/2649
Vendor Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174078
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9080