NVD Vulnerability Detail

CVE-2005-3783

Summary	The ptrace functionality (ptrace.c) in Linux kernel 2.6 before 2.6.14.2, using CLONE_THREAD, does not use the thread group ID to check whether it is attaching to itself, which allows local users to cause a denial of service (crash).
Publication Date	Nov. 24, 2005, 6:03 a.m.
Registration Date	Jan. 29, 2021, 5:59 p.m.
Last Update	Nov. 7, 2023, 10:57 a.m.

CVSS2.0 : MEDIUM
Score	4.9
Vector	AV:L/AC:L/Au:N/C:N/I:N/A:C
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel:2.6.11:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc2::::::
cpe:2.3:o:linux:linux_kernel:2.6.11.2:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.5:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.10:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.13:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.8:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.10:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.6:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.11:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.3:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.4:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.5:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.2:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc3::::::
cpe:2.3:o:linux:linux_kernel:2.6.8:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.9:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.0:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12.2:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc1::::::
cpe:2.3:o:linux:linux_kernel:2.6.12.4:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.3:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12.3:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.7:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20::::::
cpe:2.3:o:linux:linux_kernel:2.6.11.7:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc4::::::
cpe:2.3:o:linux:linux_kernel:2.6.8.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.4:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.12:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.6:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12:::::::*

Related information, measures and tools

No	URL	refsource
1	http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.14.2	CONFIRM
2	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174075	MISC
3	http://www.securityfocus.com/bid/15642	BID
4	http://secunia.com/advisories/17761	SECUNIA
5	http://www.securityfocus.com/advisories/9806	SUSE
6	http://secunia.com/advisories/17917	SECUNIA
7	http://secunia.com/advisories/17918	SECUNIA
8	http://secunia.com/advisories/18203	SECUNIA
9	http://secunia.com/advisories/17787	SECUNIA
10	http://www.debian.org/security/2006/dsa-1017	DEBIAN
11	http://www.debian.org/security/2006/dsa-1018	DEBIAN
12	http://secunia.com/advisories/19374	SECUNIA
13	http://secunia.com/advisories/19369	SECUNIA
14	ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U	SGI
15	http://secunia.com/advisories/19607	SECUNIA
16	http://www.mandriva.com/security/advisories?name=MDKSA-2006:018	MANDRIVA
17	http://www.mandriva.com/security/advisories?name=MDKSA-2006:072	MANDRIVA
18	https://usn.ubuntu.com/231-1/	UBUNTU
19	http://www.securityfocus.com/archive/1/419522/100/0/threaded	SUSE
20	http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git%3Ba=blobdiff%3Bh=fcfc4568b45f3f190ba320b0d5853836921cb8bc%3Bhp=019e04ec065a55d8f28157d3a1f7ba06cafd347f%3Bhb=082d52c56f642d21b771a13221068d40915a1409%3Bf=kernel/ptrace.c
21	http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git%3Ba=commit%3Bh=082d52c56f642d21b771a13221068d40915a1409

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel:2.6.11:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc2::::::
cpe:2.3:o:linux:linux_kernel:2.6.11.2:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.5:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.10:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.13:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.8:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.10:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.6:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.11:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.3:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.4:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.5:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.2:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc3::::::
cpe:2.3:o:linux:linux_kernel:2.6.8:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.9:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.0:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12.2:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc1::::::
cpe:2.3:o:linux:linux_kernel:2.6.12.4:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.3:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12.3:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.7:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20::::::
cpe:2.3:o:linux:linux_kernel:2.6.11.7:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.14:rc4::::::
cpe:2.3:o:linux:linux_kernel:2.6.8.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.4:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.12:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.11.1:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.6:::::::*
cpe:2.3:o:linux:linux_kernel:2.6.12:::::::*