PT-2004-3674 · Debian+2 · I2C+7

Herbert Xu

·

Published

1970-01-01

·

Updated

2018-10-19

·

CVE-2005-2555

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Debian GNU/Linux kernel versions prior to 2.6.8 Debian GNU/Linux kernel-headers versions prior to 2.6.8 Debian GNU/Linux kernel-image versions prior to 2.6.8 Debian GNU/Linux kernel-pcmcia-modules versions prior to 2.6.8 Debian GNU/Linux lm-sensors versions prior to 2.4.27-3 Debian GNU/Linux i2c versions prior to 2.4.27-3
Description The Linux kernel does not properly restrict socket policy access to users with the CAP NET ADMIN capability, which could allow local users to conduct unauthorized activities. The vulnerability can be exploited remotely. The issue affects multiple packages in the Debian GNU/Linux operating system, including the kernel, kernel-headers, kernel-image, kernel-pcmcia-modules, lm-sensors, and i2c.
Recommendations For Debian GNU/Linux kernel versions prior to 2.6.8, update to version 2.6.8 or later. For Debian GNU/Linux kernel-headers versions prior to 2.6.8, update to version 2.6.8 or later. For Debian GNU/Linux kernel-image versions prior to 2.6.8, update to version 2.6.8 or later. For Debian GNU/Linux kernel-pcmcia-modules versions prior to 2.6.8, update to version 2.6.8 or later. For Debian GNU/Linux lm-sensors versions prior to 2.4.27-3, update to version 2.4.27-3 or later. For Debian GNU/Linux i2c versions prior to 2.4.27-3, update to version 2.4.27-3 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2015-02209
BDU:2015-02210
BDU:2015-02211
BDU:2015-02212
BDU:2015-02213
BDU:2015-02214
BDU:2015-02215
BDU:2015-02216
BDU:2015-02217
BDU:2015-02218
BDU:2015-02219
BDU:2015-02220
BDU:2015-02221
BDU:2015-02222
BDU:2015-02223
BDU:2015-02224
BDU:2015-02225
BDU:2015-02226
BDU:2015-02227
BDU:2015-02228
BDU:2015-02229
BDU:2015-02230
BDU:2015-02231
BDU:2015-02232
BDU:2015-02233
BDU:2015-02234
BDU:2015-02235
BDU:2015-02236
BDU:2015-02237
BDU:2015-02238
BDU:2015-02239
BDU:2015-02240
BDU:2015-02241
BDU:2015-02242
BDU:2015-02243
BDU:2015-02244
BDU:2015-02245
BDU:2015-02246
BDU:2015-02247
BDU:2015-02248
BDU:2015-02249
BDU:2015-02250
BDU:2015-02251
BDU:2015-02252
BDU:2015-02253
BDU:2015-02254
BDU:2015-02255
BDU:2015-02256
BDU:2015-02257
BDU:2015-02258
BDU:2015-02259
BDU:2015-02260
BDU:2015-02261
BDU:2015-02262
BDU:2015-02263
BDU:2015-02264
BDU:2015-02265
BDU:2015-02266
BDU:2015-02267
BDU:2015-02268
BDU:2015-02269
BDU:2015-02270
BDU:2015-02271
BDU:2015-02272
BDU:2015-02273
BDU:2015-02274
BDU:2015-02275
BDU:2015-02276
BDU:2015-02277
BDU:2015-02278
BDU:2015-02279
BDU:2015-02280
BDU:2015-02281
BDU:2015-02282
BDU:2015-02283
BDU:2015-02284
BDU:2015-02285
BDU:2015-02286
BDU:2015-02287
BDU:2015-02288
BDU:2015-02289
BDU:2015-02290
BDU:2015-02291
BDU:2015-02292
BDU:2015-02293
BDU:2015-02294
BDU:2015-02295
BDU:2015-02296
BDU:2015-02297
BDU:2015-02298
BDU:2015-02299
BDU:2015-02300
BDU:2015-02301
BDU:2015-02302
BDU:2015-02303
BDU:2015-02304
BDU:2015-02305
BDU:2015-02306
BDU:2015-02307
BDU:2015-02308
BDU:2015-02309
BDU:2015-02310
BDU:2015-02311
BDU:2015-02312
BDU:2015-02313
BDU:2015-02314
BDU:2015-02315
BDU:2015-02316
BDU:2015-02317
BDU:2015-02318
BDU:2015-02319
BDU:2015-02320
BDU:2015-02321
BDU:2015-02322
BDU:2015-02323
BDU:2015-02324
BDU:2015-02325
BDU:2015-02326
BDU:2015-02327
BDU:2015-02328
BDU:2015-02329
BDU:2015-02330
BDU:2015-02331
BDU:2015-02332
BDU:2015-02333
BDU:2015-02334
BDU:2015-02335
BDU:2015-02336
BDU:2015-02337
BDU:2015-02338
BDU:2015-02339
BDU:2015-02340
BDU:2015-02341
BDU:2015-02342
BDU:2015-02343
BDU:2015-02344
BDU:2015-02345
BDU:2015-02346
BDU:2015-02347
BDU:2015-02348
BDU:2015-02349
BDU:2015-02350
BDU:2015-02351
BDU:2015-02352
BDU:2015-02353
BDU:2015-02354
BDU:2015-02355
BDU:2015-02356
BDU:2015-02357
BDU:2015-02358
BDU:2015-02359
BDU:2015-02360
BDU:2015-02361
BDU:2015-02362
BDU:2015-02363
BDU:2015-02364
BDU:2015-02365
BDU:2015-02366
BDU:2015-02367
BDU:2015-02368
BDU:2015-02370
BDU:2015-02371
BDU:2015-02389
BDU:2015-03166
BDU:2015-03167
BDU:2015-03168
BDU:2015-03169
BDU:2015-03170
BDU:2015-03171
BDU:2015-03172
BDU:2015-03173
BDU:2015-03174
BDU:2015-03175
BDU:2015-03176
BDU:2015-03177
BDU:2015-03178
BDU:2015-03179
BDU:2015-03180
BDU:2015-03181
BDU:2015-03182
BDU:2015-03183
BDU:2015-03184
BDU:2015-03185
BDU:2015-03186
BDU:2015-03187
BDU:2015-03188
BDU:2015-03189
BDU:2015-03190
BDU:2015-03191
BDU:2015-03192
BDU:2015-03193
BDU:2015-03194
BDU:2015-03195
BDU:2015-03196
BDU:2015-03197
BDU:2015-03198
BDU:2015-03199
BDU:2015-03200
BDU:2015-03201
BDU:2015-03202
BDU:2015-03203
BDU:2015-03204
BDU:2015-03205
BDU:2015-03206
BDU:2015-03207
BDU:2015-03208
BDU:2015-03209
BDU:2015-03210
BDU:2015-03211
BDU:2015-03212
BDU:2015-03213
BDU:2015-03214
BDU:2015-03215
BDU:2015-03216
BDU:2015-03217
BDU:2015-03218
BDU:2015-03219
BDU:2015-03220
BDU:2015-03221
BDU:2015-03222
BDU:2015-03223
BDU:2015-03224
BDU:2015-03225
BDU:2015-03226
BDU:2015-03227
BDU:2015-03228
BDU:2015-03229
BDU:2015-03230
BDU:2015-03231
BDU:2015-03232
BDU:2015-03233
BDU:2015-03234
BDU:2015-03235
BDU:2015-03236
BDU:2015-03237
BDU:2015-03238
BDU:2015-03239
BDU:2015-03240
BDU:2015-03241
BDU:2015-03242
BDU:2015-03243
BDU:2015-03244
BDU:2015-03245
BDU:2015-03246
BDU:2015-03247
BDU:2015-03248
BDU:2015-03249
BDU:2015-03250
BDU:2015-03251
BDU:2015-03252
BDU:2015-03253
BDU:2015-03254
BDU:2015-03255
BDU:2015-03256
BDU:2015-03257
BDU:2015-03258
BDU:2015-03259
BDU:2015-03260
BDU:2015-03261
BDU:2015-03262
BDU:2015-03263
BDU:2015-03264
BDU:2015-03265
BDU:2015-03266
BDU:2015-03267
BDU:2015-03268
BDU:2015-03269
BDU:2015-03270
BDU:2015-03271
BDU:2015-03272
BDU:2015-03273
BDU:2015-03274
CVE-2005-2555
DSA-1017-1
DSA-1018-1
RHSA-2005:514
RHSA-2005:663
RHSA-2005_514
RHSA-2005_663

Affected Products

Debian
Linux Kernel
Red Hat
I2C
Kernel-Headers
Kernel-Image
Kernel-Pcmcia-Modules
Lm-Sensors