CVSS: 9.1EPSS: 1%CPEs: 133EXPL: 0CVE-2005-3273
https://notcve.org/view.php?id=CVE-2005-3273
20 Oct 2005 — The rose_rt_ioctl function in rose_route.c for Radionet Open Source Environment (ROSE) in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats. • http://linux.bkbits.net:8080/linux-2.4/cset%4041e2cf515TpixcVQ8q8HvQvCv9E6zA • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2005-3180
https://notcve.org/view.php?id=CVE-2005-3180
11 Oct 2005 — The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does not properly clear memory from a previously used packet whose length is increased, which allows remote attackers to obtain sensitive information. • http://marc.info/?l=bugtraq&m=112914754708402&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 66EXPL: 0CVE-2005-3044
https://notcve.org/view.php?id=CVE-2005-3044
22 Sep 2005 — Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service (kernel OOPS from null dereference) via (1) fput in a 32-bit ioctl on 64-bit x86 systems or (2) sockfd_put in the 32-bit routing_ioctl function on 64-bit systems. • http://kernel.org/git/?p=linux/kernel/git/aegl/linux-2.6.git%3Ba=commitdiff%3Bh=35311d6478077f7bfe35c1c653193e658bf32686 •
CVSS: 5.5EPSS: 0%CPEs: 72EXPL: 1CVE-2005-2553
https://notcve.org/view.php?id=CVE-2005-2553
12 Aug 2005 — The find_target function in ptrace32.c in the Linux kernel 2.4.x before 2.4.29 does not properly handle a NULL return value from another function, which allows local users to cause a denial of service (kernel crash/oops) by running a 32-bit ltrace program with the -i option on a 64-bit executable program. • http://linux.bkbits.net:8080/linux-2.4/cset%4041dd3455GwQPufrGvBJjcUOXQa3WXA •
CVSS: 8.4EPSS: 5%CPEs: 1EXPL: 0CVE-2005-2500
https://notcve.org/view.php?id=CVE-2005-2500
08 Aug 2005 — Buffer overflow in the xdr_xcode_array2 function in xdr.c in Linux kernel 2.6.12, as used in SuSE Linux Enterprise Server 9, might allow remote attackers to cause a denial of service and possibly execute arbitrary code via crafted XDR data for the nfsacl protocol. Desbordamiento de búfer en la función xdr_xcode_array2 en xdr.c en el kernel de Linux 2.6.5 y anterirores podría permitir a atacantes remotos causar una denegación de servicio y posiblemente ejecutar código de su elección mediante datos XDR artesa... • http://linux.bkbits.net:8080/linux-2.6/cset%4042b9c4fdYUuaq0joRUZi8W0Q-2hA1A •
CVSS: 7.8EPSS: 0%CPEs: 92EXPL: 0CVE-2005-1768
https://notcve.org/view.php?id=CVE-2005-1768
11 Jul 2005 — Race condition in the ia32 compatibility code for the execve system call in Linux kernel 2.4 before 2.4.31 and 2.6 before 2.6.6 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a concurrent thread that increments a pointer count after the nargs function has counted the pointers, but before the count is copied from user space to kernel space, which leads to a buffer overflow. • ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2005-1589 – Linux Kernel 2.6.12-rc4 - 'ioctl_by_bdev' Local Denial of Service
https://notcve.org/view.php?id=CVE-2005-1589
17 May 2005 — The pkt_ioctl function in the pktcdvd block device ioctl handler (pktcdvd.c) in Linux kernel 2.6.12-rc4 and earlier calls the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space and allows local users to cause a denial of service and possibly execute arbitrary code, a similar vulnerability to CVE-2005-1264. • https://www.exploit-db.com/exploits/998 •
CVSS: 7.8EPSS: 0%CPEs: 129EXPL: 1CVE-2005-1263 – Linux Kernel 2.2.x/2.3.x/2.4.x/2.5.x/2.6.x - ELF Core Dump Local Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2005-1263
11 May 2005 — The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow. • https://www.exploit-db.com/exploits/25647 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0400
https://notcve.org/view.php?id=CVE-2005-0400
05 Apr 2005 — The ext2_make_empty function call in the Linux kernel before 2.6.11.6 does not properly initialize memory when creating a block for a new directory entry, which allows local users to obtain potentially sensitive information by reading the block. • http://arkoon.net/advisories/ext2-make-empty-leak.txt •
CVSS: 7.2EPSS: 0%CPEs: 259EXPL: 0CVE-2005-0749
https://notcve.org/view.php?id=CVE-2005-0749
01 Apr 2005 — The load_elf_library in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service (kernel crash) via a crafted ELF library or executable, which causes a free of an invalid pointer. • ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U •