CVE-2005-4782
NetBSD 2.0-2.0.3, 2.1-2.1.0, and 3 - Denial of Service via Negative SO_LINGER Socket Option
Title source: llmDescription
NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger time in the SO_LINGER socket option.
References (4)
Core 4
Core References
Patch x_refsource_confirm
http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/kern/uipc_socket.c.diff?r1=1.111&r2=1.112
Patch vendor-advisory
x_refsource_netbsd
http://mail-index.netbsd.org/netbsd-announce/2005/11/08/0010.html
Patch mailing-list
x_refsource_mlist
http://mail-index.netbsd.org/source-changes/2005/10/21/0038.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15289
Scores
EPSS
0.0005
EPSS Percentile
15.3%
Details
Status
published
Products (5)
netbsd/netbsd
2.0
netbsd/netbsd
2.0.1
netbsd/netbsd
2.0.2
netbsd/netbsd
2.0.3
netbsd/netbsd
2.1
Published
Dec 31, 2005
Tracked Since
Feb 18, 2026