← voltar
CVE-2005-2456

CVE-2005-2456

EPSS 0.4%
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OUT, which is used as an index in the sock->sk_policy array.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://secunia.com/advisories/16298http://secunia.com/advisories/16500http://secunia.com/advisories/17002http://secunia.com/advisories/17073http://secunia.com/advisories/17826http://secunia.com/advisories/18056http://secunia.com/advisories/18059https://exchange.xforce.ibmcloud.com/vulnerabilities/21710https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10858https://usn.ubuntu.com/169-1/http://www.debian.org/security/2005/dsa-921http://www.debian.org/security/2005/dsa-922