CVE-2005-3276

Published: Oct 20, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

The sys_get_thread_area function in process.c in Linux 2.6 before 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

oval:org.mitre.oval:def:9748

vdb-entry

signature

x_refsource_OVAL

18056

third-party-advisory

x_refsource_SECUNIA

MDKSA-2005:220

vendor-advisory

x_refsource_MANDRAKE

RHSA-2006:0144

vendor-advisory

x_refsource_REDHAT

RHSA-2006:0101

vendor-advisory

x_refsource_REDHAT

15527

vdb-entry

x_refsource_BID

http://lkml.org/lkml/2005/8/3/36

x_refsource_CONFIRM

FLSA:157459-2

vendor-advisory

x_refsource_FEDORA

DSA-922

vendor-advisory

x_refsource_DEBIAN

USN-219-1

vendor-advisory

x_refsource_UBUNTU

18510

third-party-advisory

x_refsource_SECUNIA

http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=71ae18ec690953e9ba7107c7cc44589c2cc0d9f1

x_refsource_CONFIRM

MDKSA-2005:218

vendor-advisory

x_refsource_MANDRAKE

FLSA:157459-1

vendor-advisory

x_refsource_FEDORA

17826

third-party-advisory

x_refsource_SECUNIA

FLSA:157459-3

vendor-advisory

x_refsource_FEDORA

MDKSA-2005:219

vendor-advisory

x_refsource_MANDRAKE

19252

third-party-advisory

x_refsource_SECUNIA

http://linux.bkbits.net:8080/linux-2.6/cset%4042e81864gSEM90Oun0jA8dufpM3inw

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-3276

Description

Affected Products

References