CVE

Id
11386  
CVE No.
CVE-2005-0180  
Status
Candidate  
Description
Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copy_from_user and copy_to_user functions.  
Phase
Assigned (20050128)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
80960 11386 CVE-2005-0180 BUGTRAQ:20050107 grsecurity 2.1.0 release / 5 Linux kernel advisories  View
80961 11386 CVE-2005-0180 URL:http://www.securityfocus.com/archive/1/386374  View
80962 11386 CVE-2005-0180 FULLDISC:20050107 grsecurity 2.1.0 release / 5 Linux kernel advisories  View
80963 11386 CVE-2005-0180 URL:http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030660.html  View
80964 11386 CVE-2005-0180 CONECTIVA:CLA-2005:930  View
80965 11386 CVE-2005-0180 URL:http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930  View
80966 11386 CVE-2005-0180 MANDRAKE:MDKSA-2005:218  View
80967 11386 CVE-2005-0180 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:218  View
80968 11386 CVE-2005-0180 MANDRAKE:MDKSA-2005:219  View
80969 11386 CVE-2005-0180 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:219  View
80970 11386 CVE-2005-0180 REDHAT:RHSA-2005:092  View
80971 11386 CVE-2005-0180 URL:http://www.redhat.com/support/errata/RHSA-2005-092.html  View
80972 11386 CVE-2005-0180 BID:12198  View
80973 11386 CVE-2005-0180 URL:http://www.securityfocus.com/bid/12198  View
80974 11386 CVE-2005-0180 OVAL:oval:org.mitre.oval:def:10667  View
80975 11386 CVE-2005-0180 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10667  View
80976 11386 CVE-2005-0180 SECUNIA:17826  View

Related JVN