CVE-2005-3274

CVSS v2.0

1.2

Low

Vector

AV:L/AC:H/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Linux versions prior to 2.6.13 Linux versions prior to 2.4.32-pre2

Description A race condition in the ip vs conn flush function allows local users to cause a denial of service by exploiting a null dereference. This occurs when a connection timer expires while the connection table is being flushed before the appropriate lock is acquired, specifically on SMP systems.

Recommendations For Linux versions prior to 2.6.13, update to version 2.6.13 or later to resolve the issue. For Linux versions prior to 2.4.32-pre2, update to version 2.4.32-pre2 or later to resolve the issue.

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2005-3274

DSA-922-1

RHSA-2005:514

RHSA-2005:663

RHSA-2005_514

RHSA-2005_663

Affected Products

Linux

Red Hat

CVE-2005-3274

Weakness Enumeration

Related Identifiers

Affected Products

References · 443