PT-2005-4001 · Linux · Linux Kernel
Adr
·
Published
2005-10-11
·
Updated
2017-02-19
·
CVE-2005-3179
CVSS v2.0
2.1
Low
| Vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions 2.6.10 through 2.6.13
Description
The issue allows local users to enable debugging and obtain sensitive information due to a debug file in sysfs being created with world-readable and world-writable permissions.
Recommendations
For Linux kernel versions 2.6.10 through 2.6.13, consider restricting access to the debug file in sysfs to prevent local users from enabling DRM debugging and obtaining sensitive information.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel