CVE-2005-2459
Linux Kernel < 2.6.12.5 - Denial of Service via zlib huft_build Null Pointer Dereference
Title source: llmDescription
The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 returns the wrong value, which allows remote attackers to cause a denial of service (kernel crash) via a certain compressed file that leads to a null pointer dereference, a different vulnerability than CVE-2005-2458.
References (16)
Core 16
Core References
Broken Link vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_50_kernel.html
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18056
Vendor Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/169-1/
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/16500
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18059
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_suse
http://www.securityfocus.com/archive/1/419522/100/0/threaded
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-922
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-921
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17826
Vendor Advisory x_refsource_confirm
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.12.5
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/14720
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17918
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/16355/
Third Party Advisory x_refsource_misc
http://bugs.gentoo.org/show_bug.cgi?id=94584
Scores
EPSS
0.0463
EPSS Percentile
90.6%
Details
CWE
CWE-476
Status
published
Products (15)
debian/debian_linux
3.1
linux/linux_kernel
2.6.0 (12 CPE variants)
linux/linux_kernel
2.6.1 (3 CPE variants)
linux/linux_kernel
2.6.2
linux/linux_kernel
2.6.3
linux/linux_kernel
2.6.4
linux/linux_kernel
2.6.5
linux/linux_kernel
2.6.6 (2 CPE variants)
linux/linux_kernel
2.6.7 (2 CPE variants)
linux/linux_kernel
2.6.8 (4 CPE variants)
... and 5 more
Published
Aug 23, 2005
Tracked Since
Feb 18, 2026