ID:10265 - Exploit for Improper input validation in Linux kernel - CVE-2005-0916

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:10265 - Exploit for Improper input validation in Linux kernel - CVE-2005-0916

ID:10265 - Exploit for Improper input validation in Linux kernel - CVE-2005-0916

Published: July 28, 2024


Vulnerability identifier: #VU94811
Vulnerability risk: Low
CVE-ID: CVE-2005-0916
CWE-ID: CWE-20
Exploitation vector: Local access
Vulnerable software:
Linux kernel

Link to public exploit:


Vulnerability description

The vulnerability allows a local user to perform service disruption.

AIO in the Linux kernel 2.6.11 on the PPC64 or IA64 architectures with CONFIG_HUGETLB_PAGE enabled allows local users to cause a denial of service (system panic) via a process that executes the io_queue_init function but exits without running io_queue_release, which causes exit_aio and is_hugepage_only_range to fail.


Remediation

Install update from vendor's repository.