CVE-2005-1264
First published: Tue May 17 2005(Updated: )
Raw character devices (raw.c) in the Linux kernel 2.6.x call the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space, a similar vulnerability to CVE-2005-1589.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | =2.6.5 | |
| Linux Linux kernel | =2.6.1 | |
| Linux Linux kernel | =2.6.0-test5 | |
| Linux Linux kernel | =2.6.3 | |
| Linux Linux kernel | =2.6.0-test2 | |
| Linux Linux kernel | =2.6.4 | |
| Linux Linux kernel | =2.6_test9_cvs | |
| Linux Linux kernel | =2.6.7-rc1 | |
| Linux Linux kernel | =2.6.2 | |
| Linux Linux kernel | =2.6.8-rc1 | |
| Linux Linux kernel | =2.6.0-test11 | |
| Linux Linux kernel | =2.6.1-rc2 | |
| Linux Linux kernel | =2.6.8 | |
| Linux Linux kernel | =2.6.0-test1 | |
| Linux Linux kernel | =2.6.0-test6 | |
| Linux Linux kernel | =2.6.0-test4 | |
| Linux Linux kernel | =2.6.0 | |
| Linux Linux kernel | =2.6.0-test10 | |
| Linux Linux kernel | =2.6.0-test9 | |
| Linux Linux kernel | =2.6.7 | |
| Linux Linux kernel | =2.6.1-rc1 | |
| Linux Linux kernel | =2.6.6-rc1 | |
| Linux Linux kernel | =2.6.9-2.6.20 | |
| Linux Linux kernel | =2.6.0-test7 | |
| Linux Linux kernel | =2.6.8-rc2 | |
| Linux Linux kernel | =2.6.8-rc3 | |
| Linux Linux kernel | =2.6.0-test8 | |
| Linux Linux kernel | =2.6.6 | |
| Linux Linux kernel | =2.6.0-test3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0045.html
- http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0046.html
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.10
- http://www.securityfocus.com/bid/13651
- http://www.redhat.com/support/errata/RHSA-2005-420.html
- http://www.vupen.com/english/advisories/2005/0557
- http://marc.info/?l=linux-kernel&m=111630512512222
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10264
- http://www.securityfocus.com/archive/1/427980/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/2.6.5
- version/linux linux kernel/2.6.1
- version/linux linux kernel/2.6.0-test5
- version/linux linux kernel/2.6.3
- version/linux linux kernel/2.6.0-test2
- version/linux linux kernel/2.6.4
- version/linux linux kernel/2.6_test9_cvs
- version/linux linux kernel/2.6.7-rc1
- version/linux linux kernel/2.6.2
- version/linux linux kernel/2.6.8-rc1
- version/linux linux kernel/2.6.0-test11
- version/linux linux kernel/2.6.1-rc2
- version/linux linux kernel/2.6.8
- version/linux linux kernel/2.6.0-test1
- version/linux linux kernel/2.6.0-test6
- version/linux linux kernel/2.6.0-test4
- version/linux linux kernel/2.6.0
- version/linux linux kernel/2.6.0-test10
- version/linux linux kernel/2.6.0-test9
- version/linux linux kernel/2.6.7
- version/linux linux kernel/2.6.1-rc1
- version/linux linux kernel/2.6.6-rc1
- version/linux linux kernel/2.6.9-2.6.20
- version/linux linux kernel/2.6.0-test7
- version/linux linux kernel/2.6.8-rc2
- version/linux linux kernel/2.6.8-rc3
- version/linux linux kernel/2.6.0-test8
- version/linux linux kernel/2.6.6
- version/linux linux kernel/2.6.0-test3