Vulnerability Description
NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger time in the SO_LINGER socket option.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netbsd | Netbsd | 2.0 |
References
- http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/kern/uipc_socket.c.diff?r1=1.111&r2=Patch
- http://mail-index.netbsd.org/netbsd-announce/2005/11/08/0010.htmlPatch
- http://mail-index.netbsd.org/source-changes/2005/10/21/0038.htmlPatch
- http://www.securityfocus.com/bid/15289
- http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/kern/uipc_socket.c.diff?r1=1.111&r2=Patch
- http://mail-index.netbsd.org/netbsd-announce/2005/11/08/0010.htmlPatch
- http://mail-index.netbsd.org/source-changes/2005/10/21/0038.htmlPatch
- http://www.securityfocus.com/bid/15289
FAQ
What is CVE-2005-4782?
CVE-2005-4782 is a vulnerability with a CVSS score of 4.9 (MEDIUM). NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger ...
How severe is CVE-2005-4782?
CVE-2005-4782 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4782?
Check the references section above for vendor advisories and patch information. Affected products include: Netbsd Netbsd.