CVE-2005-2555

Published: Aug 16, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAP_NET_ADMIN capability, which could allow local users to conduct unauthorized activities via (1) ipv4/ip_sockglue.c and (2) ipv6/ipv6_sockglue.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SA:2005:050

vendor-advisory

x_refsource_SUSE

oval:org.mitre.oval:def:10444

vdb-entry

signature

x_refsource_OVAL

USN-169-1

vendor-advisory

x_refsource_UBUNTU

17073

third-party-advisory

x_refsource_SECUNIA

19369

third-party-advisory

x_refsource_SECUNIA

http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=6fc0b4a7a73a81e74d0004732df358f4f9975be2

x_refsource_CONFIRM

DSA-1018

vendor-advisory

x_refsource_DEBIAN

14609

vdb-entry

x_refsource_BID

MDKSA-2005:218

vendor-advisory

x_refsource_MANDRAKE

RHSA-2005:514

vendor-advisory

x_refsource_REDHAT

17002

third-party-advisory

x_refsource_SECUNIA

17826

third-party-advisory

x_refsource_SECUNIA

http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6fc0b4a7a73a81e74d0004732df358f4f9975be2

x_refsource_CONFIRM

FLSA:157459-3

vendor-advisory

x_refsource_FEDORA

RHSA-2005:663

vendor-advisory

x_refsource_REDHAT

DSA-1017

vendor-advisory

x_refsource_DEBIAN

MDKSA-2005:219

vendor-advisory

x_refsource_MANDRAKE

ADV-2005-1878

vdb-entry

x_refsource_VUPEN

19374

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-2555

Description

Affected Products

References