CVE-2005-2708

Linux 2.4 kernel - DoS

Title source: llm

Description

The search_binary_handler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service (panic), as demonstrated by running a process using the bash ulimit -v command.

References (10)

[Vendor Advisory] http://secunia.com/advisories/18523

[Vendor Advisory] http://secunia.com/advisories/18562

[Vendor Advisory] http://secunia.com/advisories/18684

[Exploit, Vendor Advisory] https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=161925

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10649

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2006-0140.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2006-0190.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/428028/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/428058/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/16320

Scores

EPSS 0.0006

EPSS Percentile 19.6%

Classification

CWE

CWE-399

Status draft

Affected Products (50)

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

... and 35 more

Timeline

Published Oct 25, 2005

Tracked Since Feb 18, 2026