CVE - CVE-2005-0124

CVE-ID
CVE-2005-0124	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may trigger a buffer overflow.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MLIST:[linux-kernel] 20041216 [Coverity] Untrusted user data in kernel URL:http://seclists.org/lists/linux-kernel/2004/Dec/3914.html MLIST:[linux-kernel] 20050105 Re: [Coverity] Untrusted user data in kernel URL:http://seclists.org/lists/linux-kernel/2005/Jan/1089.html MLIST:[linux-kernel] 20050107 [PATCH 2.4.29-pre3-bk4] fs/coda Re: [Coverity] Untrusted user data in kernel URL:http://seclists.org/lists/linux-kernel/2005/Jan/2018.html MLIST:[linux-kernel] 20050107 [PATCH 2.6.10-mm2] fs/coda Re: [Coverity] Untrusted user data in kernel URL:http://seclists.org/lists/linux-kernel/2005/Jan/2020.html DEBIAN:DSA-1017 URL:http://www.debian.org/security/2006/dsa-1017 DEBIAN:DSA-1070 URL:http://www.debian.org/security/2006/dsa-1070 DEBIAN:DSA-1067 URL:http://www.debian.org/security/2006/dsa-1067 DEBIAN:DSA-1069 URL:http://www.debian.org/security/2006/dsa-1069 DEBIAN:DSA-1082 URL:http://www.debian.org/security/2006/dsa-1082 FEDORA:FLSA:157459-1 URL:http://www.securityfocus.com/archive/1/428028/100/0/threaded REDHAT:RHSA-2006:0191 URL:http://www.redhat.com/support/errata/RHSA-2006-0191.html REDHAT:RHSA-2005:663 URL:http://www.redhat.com/support/errata/RHSA-2005-663.html BID:14967 URL:http://www.securityfocus.com/bid/14967 OVAL:oval:org.mitre.oval:def:11690 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11690 VUPEN:ADV-2005-1878 URL:http://www.vupen.com/english/advisories/2005/1878 SECTRACK:1013018 URL:http://securitytracker.com/id?1013018 SECUNIA:18684 URL:http://secunia.com/advisories/18684 SECUNIA:19374 URL:http://secunia.com/advisories/19374 SECUNIA:17002 URL:http://secunia.com/advisories/17002 SECUNIA:20163 URL:http://secunia.com/advisories/20163 SECUNIA:20202 URL:http://secunia.com/advisories/20202 SECUNIA:20338 URL:http://secunia.com/advisories/20338
Assigning CNA
N/A
Date Entry Created
20050119	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20050119)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org