PT-2005-4086 · Linux+1 · Linux+1

Neil Horman

Publicado

2005-09-28

Atualizado

2024-01-21

CVE-2005-3274

CVSS v2.0

1.2

Baixa

Vetor

AV:L/AC:H/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Linux versions prior to 2.6.13 Linux versions prior to 2.4.32-pre2

Description A race condition in the ip vs conn flush function allows local users to cause a denial of service by exploiting a null dereference. This occurs when a connection timer expires while the connection table is being flushed before the appropriate lock is acquired, specifically on SMP systems.

Recommendations For Linux versions prior to 2.6.13, update to version 2.6.13 or later to resolve the issue. For Linux versions prior to 2.4.32-pre2, update to version 2.4.32-pre2 or later to resolve the issue.

Correção

DoS

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

CVE-2005-3274

DSA-922-1

RHSA-2005:514

RHSA-2005:663

RHSA-2005_514

RHSA-2005_663

Produtos afetados

Linux

Red Hat

PT-2005-4086 · Linux+1 · Linux+1

CVE-2005-3274

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 443