What is the severity of CVE-2005-1264?

CVE-2005-1264 is classified as a high-severity vulnerability, as it allows kernel address space to be accessed from user space.

How do I fix CVE-2005-1264?

To fix CVE-2005-1264, you should upgrade to a patched version of the Linux kernel beyond 2.6.11.

Which versions of the Linux kernel are affected by CVE-2005-1264?

CVE-2005-1264 affects versions of the Linux kernel from 2.6.0 up to 2.6.10.

What impact does CVE-2005-1264 have on system security?

CVE-2005-1264 can lead to unauthorized access to kernel memory, potentially allowing a user to execute arbitrary code.

Is CVE-2005-1264 similar to any other vulnerabilities?

Yes, CVE-2005-1264 is similar to CVE-2005-1589, as both involve improper handling of ioctls in the Linux kernel.

Vulnerability/
CVE-2005-1264

high

7.2

CWE

NVD-CWE-Other

17/5/2005

7/8/2024

CVE-2005-1264

First published: Tue May 17 2005(Updated: )

Raw character devices (raw.c) in the Linux kernel 2.6.x call the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space, a similar vulnerability to CVE-2005-1589.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Linux Kernel	=2.6.0
Linux Kernel	=2.6.0-test1
Linux Kernel	=2.6.0-test10
Linux Kernel	=2.6.0-test11
Linux Kernel	=2.6.0-test2
Linux Kernel	=2.6.0-test3
Linux Kernel	=2.6.0-test4
Linux Kernel	=2.6.0-test5
Linux Kernel	=2.6.0-test6
Linux Kernel	=2.6.0-test7
Linux Kernel	=2.6.0-test8
Linux Kernel	=2.6.0-test9
Linux Kernel	=2.6.1
Linux Kernel	=2.6.1-rc1
Linux Kernel	=2.6.1-rc2
Linux Kernel	=2.6.2
Linux Kernel	=2.6.3
Linux Kernel	=2.6.4
Linux Kernel	=2.6.5
Linux Kernel	=2.6.6
Linux Kernel	=2.6.6-rc1
Linux Kernel	=2.6.7
Linux Kernel	=2.6.7-rc1
Linux Kernel	=2.6.8
Linux Kernel	=2.6.8-rc1
Linux Kernel	=2.6.8-rc2
Linux Kernel	=2.6.8-rc3
Linux Kernel	=2.6.9-2.6.20
Linux Kernel	=2.6_test9_cvs

Remedy

http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0045.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-1264?
CVE-2005-1264 is classified as a high-severity vulnerability, as it allows kernel address space to be accessed from user space.
How do I fix CVE-2005-1264?
To fix CVE-2005-1264, you should upgrade to a patched version of the Linux kernel beyond 2.6.11.
Which versions of the Linux kernel are affected by CVE-2005-1264?
CVE-2005-1264 affects versions of the Linux kernel from 2.6.0 up to 2.6.10.
What impact does CVE-2005-1264 have on system security?
CVE-2005-1264 can lead to unauthorized access to kernel memory, potentially allowing a user to execute arbitrary code.
Is CVE-2005-1264 similar to any other vulnerabilities?
Yes, CVE-2005-1264 is similar to CVE-2005-1589, as both involve improper handling of ioctls in the Linux kernel.

agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/severity
agent/author
agent/remedy
agent/weakness
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/linux
canonical/linux kernel
version/linux kernel/2.6.0
version/linux kernel/2.6.0-test1
version/linux kernel/2.6.0-test10
version/linux kernel/2.6.0-test11
version/linux kernel/2.6.0-test2
version/linux kernel/2.6.0-test3
version/linux kernel/2.6.0-test4
version/linux kernel/2.6.0-test5
version/linux kernel/2.6.0-test6
version/linux kernel/2.6.0-test7
version/linux kernel/2.6.0-test8
version/linux kernel/2.6.0-test9
version/linux kernel/2.6.1
version/linux kernel/2.6.1-rc1
version/linux kernel/2.6.1-rc2
version/linux kernel/2.6.2
version/linux kernel/2.6.3
version/linux kernel/2.6.4
version/linux kernel/2.6.5
version/linux kernel/2.6.6
version/linux kernel/2.6.6-rc1
version/linux kernel/2.6.7
version/linux kernel/2.6.7-rc1
version/linux kernel/2.6.8
version/linux kernel/2.6.8-rc1
version/linux kernel/2.6.8-rc2
version/linux kernel/2.6.8-rc3
version/linux kernel/2.6.9-2.6.20
version/linux kernel/2.6_test9_cvs

Frequently Asked Questions

What is the severity of CVE-2005-1264?
CVE-2005-1264 is classified as a high-severity vulnerability, as it allows kernel address space to be accessed from user space.
How do I fix CVE-2005-1264?
To fix CVE-2005-1264, you should upgrade to a patched version of the Linux kernel beyond 2.6.11.
Which versions of the Linux kernel are affected by CVE-2005-1264?
CVE-2005-1264 affects versions of the Linux kernel from 2.6.0 up to 2.6.10.
What impact does CVE-2005-1264 have on system security?
CVE-2005-1264 can lead to unauthorized access to kernel memory, potentially allowing a user to execute arbitrary code.
Is CVE-2005-1264 similar to any other vulnerabilities?
Yes, CVE-2005-1264 is similar to CVE-2005-1589, as both involve improper handling of ioctls in the Linux kernel.

CVE-2005-1264

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-1264?

How do I fix CVE-2005-1264?

Which versions of the Linux kernel are affected by CVE-2005-1264?

What impact does CVE-2005-1264 have on system security?

Is CVE-2005-1264 similar to any other vulnerabilities?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2005-1264?

How do I fix CVE-2005-1264?

Which versions of the Linux kernel are affected by CVE-2005-1264?

What impact does CVE-2005-1264 have on system security?

Is CVE-2005-1264 similar to any other vulnerabilities?