CVE-2005-3181

NONE EPSS 39.1%
Published Oct 12, 200520y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 12, 2005 20y ago
Last Modified Jun 16, 2026 2w ago

Description

The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows attackers to cause a denial of service (memory consumption).

Threat Intelligence

EPSS Exploit Probability
39.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-401

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥2.6.0  –  ≤2.6.13.3
canonicalubuntu_linux4.10any
canonicalubuntu_linux5.04any
debiandebian_linux3.1any
mandrivalinux10.1any
mandrivalinux10.2any
mandrivalinux2006.0any

References 20

  • kernel.org http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=829841146878e082613a49581ae252c071057c23
    Broken Link
  • linux.bkbits.net http://linux.bkbits.net:8080/linux-2.6/cset%404346883bQBeBd26syWTKX2CVC5bDcA
    Broken Link
  • secunia.com http://secunia.com/advisories/17114
    Broken LinkVendor Advisory
  • secunia.com http://secunia.com/advisories/17280
    Broken LinkVendor Advisory
  • secunia.com http://secunia.com/advisories/17364
    Broken LinkVendor Advisory
  • secunia.com http://secunia.com/advisories/17826
    Broken LinkVendor Advisory
  • secunia.com http://secunia.com/advisories/17917
    Broken LinkVendor Advisory
  • secunia.com http://secunia.com/advisories/19374
    Broken LinkVendor Advisory
  • debian.org http://www.debian.org/security/2006/dsa-1017
    Third Party Advisory
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
    Third Party Advisory
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
    Third Party Advisory
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
    Third Party Advisory
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:235
    Third Party Advisory
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-808.html
    Broken Link
  • securityfocus.com http://www.securityfocus.com/advisories/9549
    Broken LinkThird Party AdvisoryVDB Entry
  • securityfocus.com http://www.securityfocus.com/advisories/9806
    Broken LinkThird Party AdvisoryVDB Entry
  • securityfocus.com http://www.securityfocus.com/archive/1/427980/100/0/threaded
    Broken LinkThird Party AdvisoryVDB Entry
  • securityfocus.com http://www.securityfocus.com/bid/15076
    Broken LinkThird Party AdvisoryVDB Entry
  • ubuntu.com http://www.ubuntu.com/usn/usn-199-1
    Third Party Advisory
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9467
    Broken Link

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.