CVE-2005-4798
Vulnerability Summary
Timeline
Description
Buffer overflow in NFS readlink handling in the Linux Kernel 2.4 up to 2.4.31 allows remote NFS servers to cause a denial of service (crash) via a long symlink, which is not properly handled in (1) nfs2xdr.c or (2) nfs3xdr.c and causes a crash in the NFS client.
CVSS Metrics
- v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS Trends
Current EPSS score: 0.89%• Percentile: 76%
Affected Systems
- linux•linux_kernel
2.4.0 | 2.4.0:test1 | 2.4.0:test10 | 2.4.0:test11 | 2.4.0:test12 | 2.4.0:test2 | 2.4.0:test3 | 2.4.0:test4 | 2.4.0:test5 | 2.4.0:test6 | 2.4.0:test7 | 2.4.0:test8 | 2.4.0:test9 | 2.4.1 | 2.4.2 | 2.4.3 | 2.4.10 | 2.4.11 | 2.4.11:pre3 | 2.4.12 | 2.4.13 | 2.4.14 | 2.4.15 | 2.4.16 | 2.4.17 | 2.4.18 | 2.4.18:pre1 | 2.4.18:pre2 | 2.4.18:pre3 | 2.4.18:pre4 | 2.4.18:pre5 | 2.4.18:pre6 | 2.4.18:pre7 | 2.4.18:pre8 | 2.4.18:pre9 | 2.4.19 | 2.4.19:pre1 | 2.4.19:pre2 | 2.4.19:pre3 | 2.4.19:pre4 | 2.4.19:pre5 | 2.4.19:pre6 | 2.4.20 | 2.4.21 | 2.4.21:pre1 | 2.4.21:pre4 | 2.4.21:pre7 | 2.4.22 | 2.4.22:pre10 | 2.4.23 | 2.4.23:pre9 | 2.4.23_ow2 | 2.4.24 | 2.4.24_ow1 | 2.4.25 | 2.4.26 | 2.4.27 | 2.4.27:pre1 | 2.4.27:pre2 | 2.4.27:pre3 | 2.4.27:pre4 | 2.4.27:pre5 | 2.4.28 | 2.4.29 | 2.4.29:rc1 | 2.4.29:rc2 | 2.4.30 | 2.4.30:rc2 | 2.4.30:rc3
References (11)
- http://www.debian.org/security/2006/dsa-1183
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11536
- http://secunia.com/advisories/22082
- http://www.novell.com/linux/security/advisories/2006-05-31.html
- http://www.securityfocus.com/bid/20186
- http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git%3Ba=commit%3Bh=87e03738fc15dc3ea4acde3a5dcb5f84b6b6152b
- http://www.ussg.iu.edu/hypermail/linux/kernel/0509.1/1333.html
- http://secunia.com/advisories/20398
- http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git%3Ba=commitdiff%3Bh=87e03738fc15dc3ea4acde3a5dcb5f84b6b6152b
- http://secunia.com/advisories/22093
- http://www.debian.org/security/2006/dsa-1184