CVE-2005-0756

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux kernel-image-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-headers-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-pcmcia-modules-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-patch-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-build-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-doc-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-tree-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-source-2.4.27 versions 2.4.27 through 2.4.27-2 Linux kernel version 2.6.8.1

Description The issue is related to multiple vulnerabilities in the Debian GNU/Linux kernel packages, which can lead to a denial of service (kernel crash) when exploited. The vulnerabilities can be exploited remotely. The ptrace system call in the Linux kernel 2.6.8.1 does not properly verify addresses on the amd64 platform, allowing local users to cause a denial of service.

Recommendations For Debian GNU/Linux kernel-image-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-headers-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-pcmcia-modules-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-patch-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-build-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-doc-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-tree-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Debian GNU/Linux kernel-source-2.4.27 versions 2.4.27 through 2.4.27-2, update to a newer version. For Linux kernel version 2.6.8.1, update to a newer version.