Info

Disclosure

Jun 27, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Linux Kernel on AMD64 contains a flaw that may allow a local denial of service on while in 32-bit compatibility mode. The issue is due to an error in fault.c and can cause the kernel to crash when handling specially crafted syscall() arguments, and will result in loss of availability for the platform.

Classification

Location: Local Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 2.6.8.1-16.20 (for Ubuntu 4.10) and 2.6.10-34.3 (for Ubuntu 5.04) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Ubuntu	Linux	4.10
		5.04

kernel.org

Linux Kernel

2.6.10

References

Security Tracker: 1014303
Secunia Advisory ID: 15812 18056
CVE ID: 2005-1765 (see also: NVD)
Other Advisory URL: http://www.debian.org/security/2005/dsa-922
Vendor Specific Advisory URL: http://www.ubuntulinux.org/support/documentation/usn/usn-143-1

Credit

ZouNanHai -

Direct URL: http://osvdb.org/36218