blob: 10d7dd87f3c8c94d53221396014dd518a0d6ed02 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
Candidate: CVE-2005-1369
References:
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.8
http://lkml.org/lkml/2005/4/20/159
Description:
The (1) it87 and (2) via686a drivers in I2C for Linux 2.6.x before 2.6.11.8,
and 2.6.12 before 2.6.12-rc2, create the sysfs "alarms" file with write
permissions, which allows local users to cause a denial of service (CPU
consumption) by attempting to write to the file, which does not have an
associated store function.
Notes:
jmm> These drivers are not present in 2.4
Bugs: 307552
upstream: released (2.6.11.8)
linux-2.6: N/A
2.6.8-sarge-security: released (2.6.8-16)
2.4.27-sarge-security: N/A
2.4.19-woody-security: N/A
2.4.18-woody-security: N/A
2.4.17-woody-security: N/A
2.4.16-woody-security: N/A
2.4.17-woody-security-hppa: N/A
2.4.17-woody-security-ia64: N/A
2.4.18-woody-security-hppa: N/A
|