CVE - CVE-2005-3783

CVE-ID
CVE-2005-3783	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The ptrace functionality (ptrace.c) in Linux kernel 2.6 before 2.6.14.2, using CLONE_THREAD, does not use the thread group ID to check whether it is attaching to itself, which allows local users to cause a denial of service (crash).
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:15642 URL:http://www.securityfocus.com/bid/15642 CONFIRM:http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git;a=blobdiff;h=fcfc4568b45f3f190ba320b0d5853836921cb8bc;hp=019e04ec065a55d8f28157d3a1f7ba06cafd347f;hb=082d52c56f642d21b771a13221068d40915a1409;f=kernel/ptrace.c CONFIRM:http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git;a=commit;h=082d52c56f642d21b771a13221068d40915a1409 CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.14.2 DEBIAN:DSA-1017 URL:http://www.debian.org/security/2006/dsa-1017 DEBIAN:DSA-1018 URL:http://www.debian.org/security/2006/dsa-1018 MANDRIVA:MDKSA-2006:018 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:018~~ (Obsolete source) MANDRIVA:MDKSA-2006:072 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:072~~ (Obsolete source) MISC:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174075 SECUNIA:17761 URL:http://secunia.com/advisories/17761 SECUNIA:17787 URL:http://secunia.com/advisories/17787 SECUNIA:17917 URL:http://secunia.com/advisories/17917 SECUNIA:17918 URL:http://secunia.com/advisories/17918 SECUNIA:18203 URL:http://secunia.com/advisories/18203 SECUNIA:19369 URL:http://secunia.com/advisories/19369 SECUNIA:19374 URL:http://secunia.com/advisories/19374 SECUNIA:19607 URL:http://secunia.com/advisories/19607 SGI:20060402-01-U URL:ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U SUSE:SUSE-SA:2005:067 URL:http://www.securityfocus.com/advisories/9806 SUSE:SUSE-SA:2005:068 URL:http://www.securityfocus.com/archive/1/419522/100/0/threaded UBUNTU:USN-231-1 URL:https://usn.ubuntu.com/231-1/
Assigning CNA
MITRE Corporation
Date Record Created
20051123	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20051123)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)