cvelistv5 - CVE-2005-2548

CVE-2005-2548 (GCVE-0-2005-2548)

Vulnerability from cvelistv5 – Published: 2005-08-12 04:00 – Updated: 2024-08-07 22:30

Summary

vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd.

Severity ?

No CVSS data available.

CWE

Assigner

debian

References

URL

Tags

	http://secunia.com/advisories/18056	third-party-advisoryx_refsource_SECUNIA
	https://usn.ubuntu.com/169-1/	vendor-advisoryx_refsource_UBUNTU
	http://www.securityfocus.com/bid/14611	vdb-entryx_refsource_BID
	http://www.debian.org/security/2005/dsa-922	vendor-advisoryx_refsource_DEBIAN
	http://secunia.com/advisories/17826	third-party-advisoryx_refsource_SECUNIA
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRAKE
	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308	x_refsource_CONFIRM
	http://lists.osdl.org/pipermail/bridge/2004-Septe…	x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T22:30:01.040Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "18056",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/18056"
          },
          {
            "name": "USN-169-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/169-1/"
          },
          {
            "name": "14611",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/14611"
          },
          {
            "name": "DSA-922",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2005/dsa-922"
          },
          {
            "name": "17826",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/17826"
          },
          {
            "name": "MDKSA-2005:219",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2005-05-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-03T20:57:01",
        "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
        "shortName": "debian"
      },
      "references": [
        {
          "name": "18056",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/18056"
        },
        {
          "name": "USN-169-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/169-1/"
        },
        {
          "name": "14611",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/14611"
        },
        {
          "name": "DSA-922",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2005/dsa-922"
        },
        {
          "name": "17826",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/17826"
        },
        {
          "name": "MDKSA-2005:219",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@debian.org",
          "ID": "CVE-2005-2548",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "18056",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/18056"
            },
            {
              "name": "USN-169-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/169-1/"
            },
            {
              "name": "14611",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/14611"
            },
            {
              "name": "DSA-922",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2005/dsa-922"
            },
            {
              "name": "17826",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/17826"
            },
            {
              "name": "MDKSA-2005:219",
              "refsource": "MANDRAKE",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
            },
            {
              "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308",
              "refsource": "CONFIRM",
              "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
            },
            {
              "name": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html",
              "refsource": "CONFIRM",
              "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
    "assignerShortName": "debian",
    "cveId": "CVE-2005-2548",
    "datePublished": "2005-08-12T04:00:00",
    "dateReserved": "2005-08-12T00:00:00",
    "dateUpdated": "2024-08-07T22:30:01.040Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C16E3D04-EC66-41FD-9CFA-FE0C21952CAB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd.\"}]",
      "id": "CVE-2005-2548",
      "lastModified": "2024-11-20T23:59:48.607",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2005-08-12T04:00:00.000",
      "references": "[{\"url\": \"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308\", \"source\": \"security@debian.org\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://lists.osdl.org/pipermail/bridge/2004-September/000638.html\", \"source\": \"security@debian.org\"}, {\"url\": \"http://secunia.com/advisories/17826\", \"source\": \"security@debian.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18056\", \"source\": \"security@debian.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2005/dsa-922\", \"source\": \"security@debian.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2005:219\", \"source\": \"security@debian.org\"}, {\"url\": \"http://www.securityfocus.com/bid/14611\", \"source\": \"security@debian.org\"}, {\"url\": \"https://usn.ubuntu.com/169-1/\", \"source\": \"security@debian.org\"}, {\"url\": \"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://lists.osdl.org/pipermail/bridge/2004-September/000638.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/17826\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/18056\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2005/dsa-922\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2005:219\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/14611\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/169-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "security@debian.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2005-2548\",\"sourceIdentifier\":\"security@debian.org\",\"published\":\"2005-08-12T04:00:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C16E3D04-EC66-41FD-9CFA-FE0C21952CAB\"}]}]}],\"references\":[{\"url\":\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308\",\"source\":\"security@debian.org\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://lists.osdl.org/pipermail/bridge/2004-September/000638.html\",\"source\":\"security@debian.org\"},{\"url\":\"http://secunia.com/advisories/17826\",\"source\":\"security@debian.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18056\",\"source\":\"security@debian.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2005/dsa-922\",\"source\":\"security@debian.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2005:219\",\"source\":\"security@debian.org\"},{\"url\":\"http://www.securityfocus.com/bid/14611\",\"source\":\"security@debian.org\"},{\"url\":\"https://usn.ubuntu.com/169-1/\",\"source\":\"security@debian.org\"},{\"url\":\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://lists.osdl.org/pipermail/bridge/2004-September/000638.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/17826\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/18056\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2005/dsa-922\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2005:219\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/14611\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/169-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-8M42-548M-PR4P

Vulnerability from github – Published: 2022-05-01 02:09 – Updated: 2025-04-03 04:16

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2005-2548"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-08-12T04:00:00Z",
    "severity": "MODERATE"
  },
  "details": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd.",
  "id": "GHSA-8m42-548m-pr4p",
  "modified": "2025-04-03T04:16:11Z",
  "published": "2022-05-01T02:09:12Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-2548"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/169-1"
    },
    {
      "type": "WEB",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
    },
    {
      "type": "WEB",
      "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17826"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18056"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2005/dsa-922"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/14611"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2005-2548

Vulnerability from fkie_nvd - Published: 2005-08-12 04:00 - Updated: 2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
security@debian.org	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308	Exploit, Vendor Advisory
security@debian.org	http://lists.osdl.org/pipermail/bridge/2004-September/000638.html
security@debian.org	http://secunia.com/advisories/17826	Vendor Advisory
security@debian.org	http://secunia.com/advisories/18056	Vendor Advisory
security@debian.org	http://www.debian.org/security/2005/dsa-922
security@debian.org	http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
security@debian.org	http://www.securityfocus.com/bid/14611
security@debian.org	https://usn.ubuntu.com/169-1/
af854a3a-2127-422b-91ae-364da2661108	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308	Exploit, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.osdl.org/pipermail/bridge/2004-September/000638.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17826	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18056	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2005/dsa-922
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/14611
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/169-1/

Impacted products

	Vendor	Product	Version
	linux	linux_kernel	2.6.8

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "C16E3D04-EC66-41FD-9CFA-FE0C21952CAB",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd."
    }
  ],
  "id": "CVE-2005-2548",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-08-12T04:00:00.000",
  "references": [
    {
      "source": "security@debian.org",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
    },
    {
      "source": "security@debian.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17826"
    },
    {
      "source": "security@debian.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18056"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.debian.org/security/2005/dsa-922"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.securityfocus.com/bid/14611"
    },
    {
      "source": "security@debian.org",
      "url": "https://usn.ubuntu.com/169-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17826"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18056"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2005/dsa-922"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/14611"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://usn.ubuntu.com/169-1/"
    }
  ],
  "sourceIdentifier": "security@debian.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2005-2548

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2005-2548

Aliases

CVE-2005-2548

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2005-2548",
    "description": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd.",
    "id": "GSD-2005-2548",
    "references": [
      "https://www.suse.com/security/cve/CVE-2005-2548.html",
      "https://www.debian.org/security/2005/dsa-922"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2005-2548"
      ],
      "details": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd.",
      "id": "GSD-2005-2548",
      "modified": "2023-12-13T01:20:10.868057Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@debian.org",
        "ID": "CVE-2005-2548",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "18056",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/18056"
          },
          {
            "name": "USN-169-1",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/169-1/"
          },
          {
            "name": "14611",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/14611"
          },
          {
            "name": "DSA-922",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2005/dsa-922"
          },
          {
            "name": "17826",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/17826"
          },
          {
            "name": "MDKSA-2005:219",
            "refsource": "MANDRAKE",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
          },
          {
            "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308",
            "refsource": "CONFIRM",
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
          },
          {
            "name": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html",
            "refsource": "CONFIRM",
            "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@debian.org",
          "ID": "CVE-2005-2548"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote attackers to cause a denial of service (kernel oops from null dereference) via certain UDP packets that lead to a function call with the wrong argument, as demonstrated using snmpwalk on snmpd."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308",
              "refsource": "CONFIRM",
              "tags": [
                "Exploit",
                "Vendor Advisory"
              ],
              "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308"
            },
            {
              "name": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://lists.osdl.org/pipermail/bridge/2004-September/000638.html"
            },
            {
              "name": "DSA-922",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2005/dsa-922"
            },
            {
              "name": "18056",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18056"
            },
            {
              "name": "14611",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/14611"
            },
            {
              "name": "17826",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17826"
            },
            {
              "name": "MDKSA-2005:219",
              "refsource": "MANDRAKE",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:219"
            },
            {
              "name": "USN-169-1",
              "refsource": "UBUNTU",
              "tags": [],
              "url": "https://usn.ubuntu.com/169-1/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-03T21:30Z",
      "publishedDate": "2005-08-12T04:00Z"
    }
  }
}

CERTA-2005-AVI-497

Vulnerability from certfr_avis - Published: - Updated:

None

Description

Tous les éditeurs Linux ont procédé à une mise à jour des noyaux inclus dans les distributions maintenues. Chacun utilisant une version source différente et des ajouts spécifiques, aucun risque commun ne peut être identifié au-delà du déni de service local. Les distributions Ubuntu, Mandriva et Red Hat ont cependant identifié un risque d'élévation de privilèges pour un utilisateur local.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Tout système utilisant un noyau Linux.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SuSE-SA:2005:067 du 06 décembre 2005 :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:219 du 30 novembre 2005 (10.1) :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:235 du 21 décembre 2005 (2006.0) :	-	other
Bulletin de sécurité RedHat RHSA-2005:663 du 28 septembre 2005 :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:218 du 30 novembre 2005 (CS3.0 et MNF2.0) :	-	other
Bulletin de sécurité Ubuntu USN-219-1 du 22 novembre 2005 :	-	other
Bulletin de sécurité Debian DSA 921 du 14 décembre 2005 :	-	other
Bulletin de sécurité RedHat RHSA-2005:808 du 27 octobre 2005 :	-	other
Bulletin de sécurité SUSE SuSE-SA:2005:068 du 14 décembre 2005 :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:220 du 30 novembre 2005 (10.2) :	-	other
Mise à jour de sécurité Fedora Core 4 #1138 du 13 décembre 2005 :	-	other
Bulletin de sécurité RedHat RHSA-2006:0144 du 15 mars 2006 :	-	other
Bulletin de sécurité Debian DSA 922 du 14 décembre 2005 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eTout syst\u00e8me utilisant un noyau \u003cTT\u003eLinux\u003c/TT\u003e.\u003c/P\u003e",
  "content": "## Description\n\nTous les \u00e9diteurs Linux ont proc\u00e9d\u00e9 \u00e0 une mise \u00e0 jour des noyaux inclus\ndans les distributions maintenues. Chacun utilisant une version source\ndiff\u00e9rente et des ajouts sp\u00e9cifiques, aucun risque commun ne peut \u00eatre\nidentifi\u00e9 au-del\u00e0 du d\u00e9ni de service local. Les distributions Ubuntu,\nMandriva et Red Hat ont cependant identifi\u00e9 un risque d\u0027\u00e9l\u00e9vation de\nprivil\u00e8ges pour un utilisateur local.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2005-0504",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0504"
    },
    {
      "name": "CVE-2005-2490",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2490"
    },
    {
      "name": "CVE-2005-3053",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3053"
    },
    {
      "name": "CVE-2005-0136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0136"
    },
    {
      "name": "CVE-2005-2801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2801"
    },
    {
      "name": "CVE-2005-3044",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3044"
    },
    {
      "name": "CVE-2005-2553",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2553"
    },
    {
      "name": "CVE-2005-2456",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2456"
    },
    {
      "name": "CVE-2005-3806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3806"
    },
    {
      "name": "CVE-2005-3660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3660"
    },
    {
      "name": "CVE-2005-3274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3274"
    },
    {
      "name": "CVE-2005-2458",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2458"
    },
    {
      "name": "CVE-2005-0179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0179"
    },
    {
      "name": "CVE-2005-3807",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3807"
    },
    {
      "name": "CVE-2005-1761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1761"
    },
    {
      "name": "CVE-2005-2709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2709"
    },
    {
      "name": "CVE-2005-2873",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2873"
    },
    {
      "name": "CVE-2005-3257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3257"
    },
    {
      "name": "CVE-2005-3107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3107"
    },
    {
      "name": "CVE-2004-1056",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-1056"
    },
    {
      "name": "CVE-2005-2459",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2459"
    },
    {
      "name": "CVE-2005-2555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2555"
    },
    {
      "name": "CVE-2005-3527",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3527"
    },
    {
      "name": "CVE-2005-0756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0756"
    },
    {
      "name": "CVE-2005-0180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0180"
    },
    {
      "name": "CVE-2005-3119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3119"
    },
    {
      "name": "CVE-2005-2800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2800"
    },
    {
      "name": "CVE-2005-1765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1765"
    },
    {
      "name": "CVE-2005-2872",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2872"
    },
    {
      "name": "CVE-2005-1764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1764"
    },
    {
      "name": "CVE-2005-3181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3181"
    },
    {
      "name": "CVE-2005-1589",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1589"
    },
    {
      "name": "CVE-2004-2302",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-2302"
    },
    {
      "name": "CVE-2005-1041",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1041"
    },
    {
      "name": "CVE-2005-2099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2099"
    },
    {
      "name": "CVE-2005-3180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3180"
    },
    {
      "name": "CVE-2005-0815",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0815"
    },
    {
      "name": "CVE-2005-1767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1767"
    },
    {
      "name": "CVE-2005-3805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3805"
    },
    {
      "name": "CVE-2005-3273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3273"
    },
    {
      "name": "CVE-2005-3275",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3275"
    },
    {
      "name": "CVE-2005-1762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1762"
    },
    {
      "name": "CVE-2005-3784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3784"
    },
    {
      "name": "CVE-2005-0757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0757"
    },
    {
      "name": "CVE-2005-2098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2098"
    },
    {
      "name": "CVE-2005-3179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3179"
    },
    {
      "name": "CVE-2004-0181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-0181"
    },
    {
      "name": "CVE-2005-1265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1265"
    },
    {
      "name": "CVE-2005-3055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3055"
    },
    {
      "name": "CVE-2005-0400",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0400"
    },
    {
      "name": "CVE-2005-3272",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3272"
    },
    {
      "name": "CVE-2005-1768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1768"
    },
    {
      "name": "CVE-2005-3783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3783"
    },
    {
      "name": "CVE-2005-2548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2548"
    },
    {
      "name": "CVE-2005-3110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3110"
    },
    {
      "name": "CVE-2005-1763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1763"
    },
    {
      "name": "CVE-2005-0449",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0449"
    },
    {
      "name": "CVE-2005-3276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3276"
    },
    {
      "name": "CVE-2005-2973",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2973"
    },
    {
      "name": "CVE-2005-3106",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3106"
    },
    {
      "name": "CVE-2005-0210",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0210"
    },
    {
      "name": "CVE-2005-3271",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3271"
    },
    {
      "name": "CVE-2005-3108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3108"
    },
    {
      "name": "CVE-2005-3105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3105"
    },
    {
      "name": "CVE-2005-2457",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2457"
    },
    {
      "name": "CVE-2005-2492",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2492"
    },
    {
      "name": "CVE-2005-0124",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0124"
    },
    {
      "name": "CVE-2005-3109",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3109"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SuSE-SA:2005:067 du 06 d\u00e9cembre    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_67_kernel.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:219 du 30 novembre    2005 (10.1) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:219"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:235 du 21 d\u00e9cembre    2005 (2006.0) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:235"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:663 du 28 septembre    2005 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-663.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:218 du 30 novembre    2005 (CS3.0 et MNF2.0) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:218"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-219-1 du 22 novembre 2005 :",
      "url": "http://www.ubuntulinux.org/usn/usn-219-1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 921 du 14 d\u00e9cembre 2005 :",
      "url": "http://www.debian.org/security/2005/dsa-921"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:808 du 27 octobre    2005 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-808.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SuSE-SA:2005:068 du 14 d\u00e9cembre    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_68_kernel.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:220 du 30 novembre    2005 (10.2) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:220"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 4 #1138 du 13 d\u00e9cembre    2005 :",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-December/msg0034.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2006:0144 du 15 mars 2006    :",
      "url": "http://rhn.redhat.com/errata/RHSA-2006-0144.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 922 du 14 d\u00e9cembre 2005 :",
      "url": "http://www.debian.org/security/2005/dsa-922"
    }
  ],
  "reference": "CERTA-2005-AVI-497",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-12-22T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence CVE CAN-2005-3660.",
      "revision_date": "2005-12-29T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 RedHat RHSA-2006:0144.",
      "revision_date": "2006-03-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": null,
  "title": "Mise \u00e0 jour des noyaux des distributions Linux",
  "vendor_advisories": []
}

CERTA-2005-AVI-497

Vulnerability from certfr_avis - Published: - Updated:

None

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Tout système utilisant un noyau Linux.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SuSE-SA:2005:067 du 06 décembre 2005 :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:219 du 30 novembre 2005 (10.1) :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:235 du 21 décembre 2005 (2006.0) :	-	other
Bulletin de sécurité RedHat RHSA-2005:663 du 28 septembre 2005 :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:218 du 30 novembre 2005 (CS3.0 et MNF2.0) :	-	other
Bulletin de sécurité Ubuntu USN-219-1 du 22 novembre 2005 :	-	other
Bulletin de sécurité Debian DSA 921 du 14 décembre 2005 :	-	other
Bulletin de sécurité RedHat RHSA-2005:808 du 27 octobre 2005 :	-	other
Bulletin de sécurité SUSE SuSE-SA:2005:068 du 14 décembre 2005 :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:220 du 30 novembre 2005 (10.2) :	-	other
Mise à jour de sécurité Fedora Core 4 #1138 du 13 décembre 2005 :	-	other
Bulletin de sécurité RedHat RHSA-2006:0144 du 15 mars 2006 :	-	other
Bulletin de sécurité Debian DSA 922 du 14 décembre 2005 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eTout syst\u00e8me utilisant un noyau \u003cTT\u003eLinux\u003c/TT\u003e.\u003c/P\u003e",
  "content": "## Description\n\nTous les \u00e9diteurs Linux ont proc\u00e9d\u00e9 \u00e0 une mise \u00e0 jour des noyaux inclus\ndans les distributions maintenues. Chacun utilisant une version source\ndiff\u00e9rente et des ajouts sp\u00e9cifiques, aucun risque commun ne peut \u00eatre\nidentifi\u00e9 au-del\u00e0 du d\u00e9ni de service local. Les distributions Ubuntu,\nMandriva et Red Hat ont cependant identifi\u00e9 un risque d\u0027\u00e9l\u00e9vation de\nprivil\u00e8ges pour un utilisateur local.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2005-0504",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0504"
    },
    {
      "name": "CVE-2005-2490",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2490"
    },
    {
      "name": "CVE-2005-3053",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3053"
    },
    {
      "name": "CVE-2005-0136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0136"
    },
    {
      "name": "CVE-2005-2801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2801"
    },
    {
      "name": "CVE-2005-3044",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3044"
    },
    {
      "name": "CVE-2005-2553",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2553"
    },
    {
      "name": "CVE-2005-2456",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2456"
    },
    {
      "name": "CVE-2005-3806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3806"
    },
    {
      "name": "CVE-2005-3660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3660"
    },
    {
      "name": "CVE-2005-3274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3274"
    },
    {
      "name": "CVE-2005-2458",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2458"
    },
    {
      "name": "CVE-2005-0179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0179"
    },
    {
      "name": "CVE-2005-3807",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3807"
    },
    {
      "name": "CVE-2005-1761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1761"
    },
    {
      "name": "CVE-2005-2709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2709"
    },
    {
      "name": "CVE-2005-2873",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2873"
    },
    {
      "name": "CVE-2005-3257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3257"
    },
    {
      "name": "CVE-2005-3107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3107"
    },
    {
      "name": "CVE-2004-1056",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-1056"
    },
    {
      "name": "CVE-2005-2459",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2459"
    },
    {
      "name": "CVE-2005-2555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2555"
    },
    {
      "name": "CVE-2005-3527",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3527"
    },
    {
      "name": "CVE-2005-0756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0756"
    },
    {
      "name": "CVE-2005-0180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0180"
    },
    {
      "name": "CVE-2005-3119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3119"
    },
    {
      "name": "CVE-2005-2800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2800"
    },
    {
      "name": "CVE-2005-1765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1765"
    },
    {
      "name": "CVE-2005-2872",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2872"
    },
    {
      "name": "CVE-2005-1764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1764"
    },
    {
      "name": "CVE-2005-3181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3181"
    },
    {
      "name": "CVE-2005-1589",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1589"
    },
    {
      "name": "CVE-2004-2302",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-2302"
    },
    {
      "name": "CVE-2005-1041",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1041"
    },
    {
      "name": "CVE-2005-2099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2099"
    },
    {
      "name": "CVE-2005-3180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3180"
    },
    {
      "name": "CVE-2005-0815",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0815"
    },
    {
      "name": "CVE-2005-1767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1767"
    },
    {
      "name": "CVE-2005-3805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3805"
    },
    {
      "name": "CVE-2005-3273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3273"
    },
    {
      "name": "CVE-2005-3275",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3275"
    },
    {
      "name": "CVE-2005-1762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1762"
    },
    {
      "name": "CVE-2005-3784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3784"
    },
    {
      "name": "CVE-2005-0757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0757"
    },
    {
      "name": "CVE-2005-2098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2098"
    },
    {
      "name": "CVE-2005-3179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3179"
    },
    {
      "name": "CVE-2004-0181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-0181"
    },
    {
      "name": "CVE-2005-1265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1265"
    },
    {
      "name": "CVE-2005-3055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3055"
    },
    {
      "name": "CVE-2005-0400",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0400"
    },
    {
      "name": "CVE-2005-3272",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3272"
    },
    {
      "name": "CVE-2005-1768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1768"
    },
    {
      "name": "CVE-2005-3783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3783"
    },
    {
      "name": "CVE-2005-2548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2548"
    },
    {
      "name": "CVE-2005-3110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3110"
    },
    {
      "name": "CVE-2005-1763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-1763"
    },
    {
      "name": "CVE-2005-0449",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0449"
    },
    {
      "name": "CVE-2005-3276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3276"
    },
    {
      "name": "CVE-2005-2973",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2973"
    },
    {
      "name": "CVE-2005-3106",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3106"
    },
    {
      "name": "CVE-2005-0210",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0210"
    },
    {
      "name": "CVE-2005-3271",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3271"
    },
    {
      "name": "CVE-2005-3108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3108"
    },
    {
      "name": "CVE-2005-3105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3105"
    },
    {
      "name": "CVE-2005-2457",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2457"
    },
    {
      "name": "CVE-2005-2492",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-2492"
    },
    {
      "name": "CVE-2005-0124",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-0124"
    },
    {
      "name": "CVE-2005-3109",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3109"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SuSE-SA:2005:067 du 06 d\u00e9cembre    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_67_kernel.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:219 du 30 novembre    2005 (10.1) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:219"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:235 du 21 d\u00e9cembre    2005 (2006.0) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:235"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:663 du 28 septembre    2005 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-663.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:218 du 30 novembre    2005 (CS3.0 et MNF2.0) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:218"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-219-1 du 22 novembre 2005 :",
      "url": "http://www.ubuntulinux.org/usn/usn-219-1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 921 du 14 d\u00e9cembre 2005 :",
      "url": "http://www.debian.org/security/2005/dsa-921"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:808 du 27 octobre    2005 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-808.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SuSE-SA:2005:068 du 14 d\u00e9cembre    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_68_kernel.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:220 du 30 novembre    2005 (10.2) :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:220"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 4 #1138 du 13 d\u00e9cembre    2005 :",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-December/msg0034.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2006:0144 du 15 mars 2006    :",
      "url": "http://rhn.redhat.com/errata/RHSA-2006-0144.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 922 du 14 d\u00e9cembre 2005 :",
      "url": "http://www.debian.org/security/2005/dsa-922"
    }
  ],
  "reference": "CERTA-2005-AVI-497",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-12-22T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence CVE CAN-2005-3660.",
      "revision_date": "2005-12-29T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 RedHat RHSA-2006:0144.",
      "revision_date": "2006-03-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": null,
  "title": "Mise \u00e0 jour des noyaux des distributions Linux",
  "vendor_advisories": []
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2005-2548 (GCVE-0-2005-2548)

GHSA-8M42-548M-PR4P

FKIE_CVE-2005-2548

GSD-2005-2548

CERTA-2005-AVI-497

Description

Solution

CERTA-2005-AVI-497

Description

Solution

Tags

Sightings

Nomenclature