Integer overflow in Linux kernel

1) Integer overflow

EUVDB-ID: #VU95467

Risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2005-3808

CWE-ID: CWE-190 - Integer overflow

Exploit availability: Yes

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

Integer overflow in the invalidate_inode_pages2_range function in mm/truncate.c in Linux kernel 2.6.11 to 2.6.14 allows local users to cause a denial of service (hang) via 64-bit mmap calls that are not properly handled on a 32-bit system.

Mitigation

Install update from vendor's repository.

Vulnerable software versions

Linux kernel: All versions

CPE2.3

• cpe:2.3:o:linux_foundation:linux_kernel:*:*:*:*:*:*:*:*

External links

https://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html
https://seclists.org/lists/linux-kernel/2005/Nov/7839.html
https://secunia.com/advisories/18203
https://secunia.com/advisories/18788
https://secunia.com/advisories/19038
https://www.kernel.org/hg/linux-2.6/?cs=6d5ffbb49406
https://www.mandriva.com/security/advisories?name=MDKSA-2006:018
https://www.novell.com/linux/security/advisories/2006_06_kernel.html
https://www.securityfocus.com/advisories/9852
https://www.securityfocus.com/bid/15846
https://usn.ubuntu.com/231-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.