CVE-2004-0565
First published: Thu Jul 08 2004(Updated: )
Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mandrakesoft Mandrake Multi Network Firewall | =8.2 | |
| Trustix Secure Linux | =2.0 | |
| Mandrakesoft Mandrake Linux Corporate Server | =2.1 | |
| Mandrakesoft Mandrake Linux | =9.2 | |
| Trustix Secure Linux | =2 | |
| Linux Linux kernel | =2.4.0 | |
| Mandrakesoft Mandrake Linux | =10.0 | |
| Trustix Secure Linux | =2.1 | |
| Mandrakesoft Mandrake Linux | =9.1 | |
| Gentoo Linux |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124734
- http://archives.neohapsis.com/archives/linux/owl/2004-q2/0038.html
- http://www.debian.org/security/2006/dsa-1070
- http://www.debian.org/security/2006/dsa-1067
- http://www.debian.org/security/2006/dsa-1069
- http://www.securityfocus.com/bid/10687
- http://secunia.com/advisories/20162
- http://secunia.com/advisories/20163
- http://www.redhat.com/support/errata/RHSA-2004-504.html
- http://secunia.com/advisories/20202
- http://www.debian.org/security/2006/dsa-1082
- http://secunia.com/advisories/20338
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:066
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16644
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10714
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/mandrakesoft
- canonical/mandrakesoft mandrake multi network firewall
- version/mandrakesoft mandrake multi network firewall/8.2
- vendor/trustix
- canonical/trustix secure linux
- version/trustix secure linux/2.0
- canonical/mandrakesoft mandrake linux corporate server
- version/mandrakesoft mandrake linux corporate server/2.1
- canonical/mandrakesoft mandrake linux
- version/mandrakesoft mandrake linux/9.2
- version/trustix secure linux/2
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/2.4.0
- version/mandrakesoft mandrake linux/10.0
- version/trustix secure linux/2.1
- version/mandrakesoft mandrake linux/9.1
- vendor/gentoo
- canonical/gentoo linux