CVE-2004-0814

Description

Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote attackers to cause a denial of service (panic) by switching from console to PPP line discipline, then quickly sending data that is received during the switch.

Affected products

• Linux / Linux kernel2.2.0 – 2.2.0
• Linux / Linux kernel2.2.1 – 2.2.1
• Linux / Linux kernel2.2.2 – 2.2.2
• Linux / Linux kernel2.2.3 – 2.2.3
• Linux / Linux kernel2.2.7 – 2.2.7
• Linux / Linux kernel2.2.8 – 2.2.8
• Linux / Linux kernel2.2.9 – 2.2.9
• Linux / Linux kernel2.2.10 – 2.2.10
• Linux / Linux kernel2.2.11 – 2.2.11
• Linux / Linux kernel2.2.12 – 2.2.12
• Linux / Linux kernel2.2.13 – 2.2.13
• Linux / Linux kernel2.2.14 – 2.2.14
• Linux / Linux kernel2.2.15 – 2.2.15
• Linux / Linux kernel2.2.15 – 2.2.15
• Linux / Linux kernel2.2.15_pre20 – 2.2.15_pre20
• Linux / Linux kernel2.2.16 – 2.2.16
• Linux / Linux kernel2.2.16 – 2.2.16
• Linux / Linux kernel2.2.17 – 2.2.17
• Linux / Linux kernel2.2.18 – 2.2.18
• Linux / Linux kernel2.2.19 – 2.2.19
• Linux / Linux kernel2.2.20 – 2.2.20
• Linux / Linux kernel2.2.21 – 2.2.21
• Linux / Linux kernel2.2.22 – 2.2.22
• Linux / Linux kernel2.2.23 – 2.2.23
• Linux / Linux kernel2.2.24 – 2.2.24
• Linux / Linux kernel2.2.25 – 2.2.25
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.0 – 2.4.0
• Linux / Linux kernel2.4.1 – 2.4.1
• Linux / Linux kernel2.4.2 – 2.4.2
• Linux / Linux kernel2.4.3 – 2.4.3
• Linux / Linux kernel2.4.4 – 2.4.4
• Linux / Linux kernel2.4.5 – 2.4.5
• Linux / Linux kernel2.4.6 – 2.4.6
• Linux / Linux kernel2.4.7 – 2.4.7
• Linux / Linux kernel2.4.8 – 2.4.8
• Linux / Linux kernel2.4.9 – 2.4.9
• Linux / Linux kernel2.4.10 – 2.4.10
• Linux / Linux kernel2.4.11 – 2.4.11
• Linux / Linux kernel2.4.12 – 2.4.12
• Linux / Linux kernel2.4.13 – 2.4.13
• Linux / Linux kernel2.4.14 – 2.4.14
• Linux / Linux kernel2.4.15 – 2.4.15
• Linux / Linux kernel2.4.16 – 2.4.16
• Linux / Linux kernel2.4.17 – 2.4.17
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.18 – 2.4.18
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.19 – 2.4.19
• Linux / Linux kernel2.4.20 – 2.4.20
• Linux / Linux kernel2.4.21 – 2.4.21
• Linux / Linux kernel2.4.21 – 2.4.21
• Linux / Linux kernel2.4.21 – 2.4.21
• Linux / Linux kernel2.4.21 – 2.4.21
• Linux / Linux kernel2.4.22 – 2.4.22
• Linux / Linux kernel2.4.23 – 2.4.23
• Linux / Linux kernel2.4.23 – 2.4.23
• Linux / Linux kernel2.4.23_ow2 – 2.4.23_ow2
• Linux / Linux kernel2.4.24 – 2.4.24
• Linux / Linux kernel2.4.24_ow1 – 2.4.24_ow1
• Linux / Linux kernel2.4.25 – 2.4.25
• Linux / Linux kernel2.4.26 – 2.4.26
• Linux / Linux kernel2.4.27 – 2.4.27
• Linux / Linux kernel2.4.27 – 2.4.27
• Linux / Linux kernel2.4.27 – 2.4.27
• Linux / Linux kernel2.4.27 – 2.4.27
• Linux / Linux kernel2.4.27 – 2.4.27
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.0 – 2.6.0
• Linux / Linux kernel2.6.1 – 2.6.1
• Linux / Linux kernel2.6.1 – 2.6.1
• Linux / Linux kernel2.6.1 – 2.6.1
• Linux / Linux kernel2.6.2 – 2.6.2
• Linux / Linux kernel2.6.3 – 2.6.3
• Linux / Linux kernel2.6.4 – 2.6.4
• Linux / Linux kernel2.6.5 – 2.6.5
• Linux / Linux kernel2.6.6 – 2.6.6
• Linux / Linux kernel2.6.6 – 2.6.6
• Linux / Linux kernel2.6.7 – 2.6.7
• Linux / Linux kernel2.6.7 – 2.6.7
• Linux / Linux kernel2.6.8 – 2.6.8
• Linux / Linux kernel2.6.8 – 2.6.8
• Linux / Linux kernel2.6.8 – 2.6.8
• Linux / Linux kernel2.6_test9_cvs – 2.6_test9_cvs
• Ubuntu / ubuntu_linux4.1 – 4.1
• Ubuntu / ubuntu_linux4.1 – 4.1

References

• MISChttp://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=133110
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDKSA-2005:022
• MAILING_LISThttp://marc.info/?l=bugtraq&m=110306397320336&w=2
• MISChttps://bugzilla.fedora.us/show_bug.cgi?id=2336
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/17816
• MISChttp://www.securityfocus.com/archive/1/379005
• MISChttp://www.securityfocus.com/bid/11492
• MISChttp://www.securityfocus.com/bid/11491
• MISChttp://www.redhat.com/support/errata/RHSA-2005-293.html
• MISChttp://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=131672
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10728