Vulnerability Description
The (1) it87 and (2) via686a drivers in I2C for Linux 2.6.x before 2.6.11.8, and 2.6.12 before 2.6.12-rc2, create the sysfs "alarms" file with write permissions, which allows local users to cause a denial of service (CPU consumption) by attempting to write to the file, which does not have an associated store function.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.6.0 |
References
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.8Patch
- http://lkml.org/lkml/2005/4/20/159
- http://www.securityfocus.com/archive/1/427980/100/0/threaded
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.8Patch
- http://lkml.org/lkml/2005/4/20/159
- http://www.securityfocus.com/archive/1/427980/100/0/threaded
FAQ
What is CVE-2005-1369?
CVE-2005-1369 is a vulnerability with a CVSS score of 2.1 (LOW). The (1) it87 and (2) via686a drivers in I2C for Linux 2.6.x before 2.6.11.8, and 2.6.12 before 2.6.12-rc2, create the sysfs "alarms" file with write permissions, which allows local users to cause a de...
How severe is CVE-2005-1369?
CVE-2005-1369 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1369?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.