VDB
CVE-2004-0814
CVE-2004-0814
PUBLISHED
Reported by mitre · Published October 28, 2004
Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote attackers to cause a denial of service (panic) by switching from console to PPP line discipline, then quickly sending data that is received during the switch.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | *, n/a, * |
Timeline
- Oct 28, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- x_refsource_CONFIRM
- MDKSA-2005:022 vendor-advisoryx_refsource_MANDRAKE
- 20041214 [USN-38-1] Linux kernel vulnerabilities mailing-listx_refsource_BUGTRAQ
- FLSA:2336 vendor-advisoryx_refsource_FEDORA
- linux-tiocsetd-race-condition(17816) vdb-entryx_refsource_XF
- 20041020 CAN-2004-0814: Linux terminal layer races mailing-listx_refsource_BUGTRAQ
- 11492 vdb-entryx_refsource_BID
- 11491 vdb-entryx_refsource_BID
- RHSA-2005:293 vendor-advisoryx_refsource_REDHAT
- x_refsource_CONFIRM
- oval:org.mitre.oval:def:10728 vdb-entrysignaturex_refsource_OVAL