CVE-2005-3257
First published: Tue Oct 18 2005(Updated: )
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | =2.6.14.4 | |
| Linux Linux kernel | =2.6.12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334113
- http://www.securityfocus.com/bid/15122
- http://secunia.com/advisories/17995
- http://secunia.com/advisories/18203
- http://secunia.com/advisories/17226
- http://www.debian.org/security/2006/dsa-1017
- http://secunia.com/advisories/17826
- http://www.debian.org/security/2006/dsa-1018
- http://secunia.com/advisories/19374
- http://secunia.com/advisories/19369
- http://secunia.com/advisories/19185
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:235
- http://rhn.redhat.com/errata/RHBA-2007-0304.html
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10615
- https://usn.ubuntu.com/231-1/
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/2.6.14.4
- version/linux linux kernel/2.6.12