CVE - CVE-2005-3275

CVE-ID
CVE-2005-3275	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The NAT code (1) ip_nat_proto_tcp.c and (2) ip_nat_proto_udp.c in Linux kernel 2.6 before 2.6.13 and 2.4 before 2.4.32-rc1 incorrectly declares a variable to be static, which allows remote attackers to cause a denial of service (memory corruption) by causing two packets for the same protocol to be NATed at the same time, which leads to memory corruption.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:15531 URL:http://www.securityfocus.com/bid/15531 CONFIRM:http://linux.bkbits.net:8080/linux-2.6/cset@42e14e05d0V1d88nZlaIX1F9dCRApA DEBIAN:DSA-921 URL:http://www.debian.org/security/2005/dsa-921 DEBIAN:DSA-922 URL:http://www.debian.org/security/2005/dsa-922 FEDORA:FLSA:157459-1 URL:http://www.securityfocus.com/archive/1/428028/100/0/threaded FEDORA:FLSA:157459-2 URL:http://www.securityfocus.com/archive/1/428058/100/0/threaded FEDORA:FLSA:157459-3 URL:http://www.securityfocus.com/archive/1/427980/100/0/threaded MANDRAKE:MDKSA-2005:218 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2005:218~~ (Obsolete source) MANDRAKE:MDKSA-2005:219 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2005:219~~ (Obsolete source) MANDRAKE:MDKSA-2005:220 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2005:220~~ (Obsolete source) MANDRIVA:MDKSA-2006:044 URL:~~http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:044~~ (Obsolete source) OVAL:oval:org.mitre.oval:def:10142 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10142 REDHAT:RHSA-2006:0140 URL:http://www.redhat.com/support/errata/RHSA-2006-0140.html REDHAT:RHSA-2006:0190 URL:http://www.redhat.com/support/errata/RHSA-2006-0190.html REDHAT:RHSA-2006:0191 URL:http://www.redhat.com/support/errata/RHSA-2006-0191.html SECUNIA:17826 URL:http://secunia.com/advisories/17826 SECUNIA:17918 URL:http://secunia.com/advisories/17918 SECUNIA:18056 URL:http://secunia.com/advisories/18056 SECUNIA:18059 URL:http://secunia.com/advisories/18059 SECUNIA:18562 URL:http://secunia.com/advisories/18562 SECUNIA:18684 URL:http://secunia.com/advisories/18684 SECUNIA:18977 URL:http://secunia.com/advisories/18977 SECUNIA:19185 URL:http://secunia.com/advisories/19185 SECUNIA:19607 URL:http://secunia.com/advisories/19607 SGI:20060402-01-U URL:ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U SUSE:SUSE-SA:2005:068 URL:http://www.securityfocus.com/archive/1/419522/100/0/threaded UBUNTU:USN-219-1 URL:https://usn.ubuntu.com/219-1/
Assigning CNA
MITRE Corporation
Date Record Created
20051020	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20051020)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)