CVE-2005-0529
LowLinux kernel 2.6.10 and 2.6.11rc1-bk6 uses different size types for offset arguments to the proc_file_read and locks_read_proc functions, which leads to a heap-based buffer overflow when a signed comparison causes negative integers to be used in a positive context.
CVSS 2.0 score
2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N
References
The following references provide additional information about CVE-2005-0529 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.
-
-
-
-
-
-
-
-
PatchKernel patch commithttp://www.guninski.com/where_do_you_want_billg_to_go_today_3.html
Frequently asked questions
-
What is CVE-2005-0529?
CVE-2005-0529 is a Low severity Linux kernel vulnerability with a CVSS score of 2.1 out of 10 . CVE-2005-0529 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
-
What is the CVSS score for CVE-2005-0529?
CVE-2005-0529 has a CVSS score of 2.1 out of 10, rated Low severity (CVSS 2.0). The vector string is
AV:L/AC:L/Au:N/C:P/I:N/A:N. -
Is there a patch available for CVE-2005-0529?
No patch is currently available for CVE-2005-0529. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
-
Is CVE-2005-0529 actively exploited?
No — CVE-2005-0529 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.