CVE
- Id
- 14479
- CVE No.
- CVE-2005-3273
- Status
- Candidate
- Description
- The rose_rt_ioctl function in rose_route.c for Radionet Open Source Environment (ROSE) in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats.
- Phase
- Assigned (20051020)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 109164 | 14479 | CVE-2005-3273 | CONFIRM:http://linux.bkbits.net:8080/linux-2.4/cset@41e2cf515TpixcVQ8q8HvQvCv9E6zA | View |
| 109165 | 14479 | CVE-2005-3273 | CONFIRM:http://linux.bkbits.net:8080/linux-2.6/cset@423114bcdthRtmtdS6MsZiBVvteGCg | View |
| 109166 | 14479 | CVE-2005-3273 | CONFIRM:http://lkml.org/lkml/2005/5/23/169 | View |
| 109167 | 14479 | CVE-2005-3273 | DEBIAN:DSA-922 | View |
| 109168 | 14479 | CVE-2005-3273 | URL:http://www.debian.org/security/2005/dsa-922 | View |
| 109169 | 14479 | CVE-2005-3273 | FEDORA:FLSA:157459-1 | View |
| 109170 | 14479 | CVE-2005-3273 | URL:http://www.securityfocus.com/archive/1/archive/1/428028/100/0/threaded | View |
| 109171 | 14479 | CVE-2005-3273 | MANDRAKE:MDKSA-2005:218 | View |
| 109172 | 14479 | CVE-2005-3273 | URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:218 | View |
| 109173 | 14479 | CVE-2005-3273 | MANDRAKE:MDKSA-2005:219 | View |
| 109174 | 14479 | CVE-2005-3273 | URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:219 | View |
| 109175 | 14479 | CVE-2005-3273 | MANDRAKE:MDKSA-2005:220 | View |
| 109176 | 14479 | CVE-2005-3273 | URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:220 | View |
| 109177 | 14479 | CVE-2005-3273 | REDHAT:RHSA-2005:663 | View |
| 109178 | 14479 | CVE-2005-3273 | URL:http://www.redhat.com/support/errata/RHSA-2005-663.html | View |
| 109179 | 14479 | CVE-2005-3273 | REDHAT:RHSA-2006:0579 | View |
| 109180 | 14479 | CVE-2005-3273 | URL:http://www.redhat.com/support/errata/RHSA-2006-0579.html | View |
| 109181 | 14479 | CVE-2005-3273 | REDHAT:RHSA-2006:0580 | View |
| 109182 | 14479 | CVE-2005-3273 | URL:http://www.redhat.com/support/errata/RHSA-2006-0580.html | View |
| 109183 | 14479 | CVE-2005-3273 | UBUNTU:USN-219-1 | View |
| 109184 | 14479 | CVE-2005-3273 | URL:http://www.ubuntulinux.org/support/documentation/usn/usn-219-1 | View |
| 109185 | 14479 | CVE-2005-3273 | BID:13886 | View |
| 109186 | 14479 | CVE-2005-3273 | URL:http://www.securityfocus.com/bid/13886 | View |
| 109187 | 14479 | CVE-2005-3273 | OVAL:oval:org.mitre.oval:def:9552 | View |
| 109188 | 14479 | CVE-2005-3273 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9552 | View |
| 109189 | 14479 | CVE-2005-3273 | SECTRACK:1014115 | View |
| 109190 | 14479 | CVE-2005-3273 | URL:http://securitytracker.com/id?1014115 | View |
| 109191 | 14479 | CVE-2005-3273 | SECUNIA:18056 | View |
| 109192 | 14479 | CVE-2005-3273 | URL:http://secunia.com/advisories/18056 | View |
| 109193 | 14479 | CVE-2005-3273 | SECUNIA:17826 | View |
| 109194 | 14479 | CVE-2005-3273 | URL:http://secunia.com/advisories/17826 | View |
| 109195 | 14479 | CVE-2005-3273 | SECUNIA:21035 | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 62445 | JVNDB-2005-000647 | Linux Kernel の NAT 機能 におけるサービス運用妨害 (DoS) の脆弱性 | Linux Kernel に実装されている NAT の ip_nat_proto_tcp.c および ip_nat_proto_udp.c には、portptr 変数のデータ型の宣言が不適切なため、同じプロトコルの 2 つのパケットを同時に処理した場合、メモリ領域が破壊され、片方のパケットの conntrack 情報が消えてしまう脆弱性が存在します。 | CVE-2005-3275 | 14479 | 2.6 | http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000647.html | View |
