CVE-2005-2708

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.4 on 64-bit x86 architectures

Description The issue is related to the search binary handler function in exec.c, which does not properly check a return code when virtual memory is low. This can be exploited by local users to cause a denial of service, resulting in a system panic. The exploitation can be demonstrated by running a process with limited virtual memory using the bash ulimit -v command.

Recommendations For Linux kernel version 2.4 on 64-bit x86 architectures, consider applying a patch that fixes the search binary handler function to properly handle return codes when virtual memory is low. As a temporary workaround, restrict the use of the bash ulimit -v command to minimize the risk of exploitation.