Description
Race condition in the ia32 compatibility code for the execve system call in Linux kernel 2.4 before 2.4.31 and 2.6 before 2.6.6 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a concurrent thread that increments a pointer count after the nargs function has counted the pointers, but before the count is copied from user space to kernel space, which leads to a buffer overflow.
Published: 2005-07-11
Score: 3.7 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-921-1 New Linux 2.4.27 packages fix several vulnerabilities
EUVD EUVD EUVD-2005-1770 Race condition in the ia32 compatibility code for the execve system call in Linux kernel 2.4 before 2.4.31 and 2.6 before 2.6.6 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a concurrent thread that increments a pointer count after the nargs function has counted the pointers, but before the count is copied from user space to kernel space, which leads to a buffer overflow.
History

No history.

Subscriptions

Linux Linux Kernel
Redhat Enterprise Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-07T21:59:24.104Z

Reserved: 2005-05-31T00:00:00.000Z

Link: CVE-2005-1768

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2005-07-11T04:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2005-1768

cve-icon Redhat

Severity : Important

Publid Date: 2005-07-04T00:00:00Z

Links: CVE-2005-1768 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses