CVE-2005-3119

Published: October 12, 2005Last modified: November 10, 2023

Description

Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10 up to 2.6.13 allows local users to cause a denial of service (memory consumption) via a large number of authorization token keys.

Status

References

• http://linux.bkbits.net:8080/linux-2.6/cset%4043483fddCiQX1WyG_orbko06TrjMVA
• http://secunia.com/advisories/17114
• http://secunia.com/advisories/17364
• http://www.redhat.com/support/errata/RHSA-2005-808.html
• http://www.securityfocus.com/bid/15076
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11236