CVE-2005-0403

Published: Sep 1, 2005Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

init_dev in tty_io.c in the Red Hat backport of NPTL to Red Hat Enterprise Linux 3 does not properly clear controlling tty's in multi-threaded applications, which allows local users to cause a denial of service (crash) and possibly gain tty access via unknown attack vectors that trigger an access of a pointer to a freed structure.

Affected (4)

Products: Redhat: Enterprise Linux, Enterprise Linux Desktop

2 products

Enterprise Linux

Enterprise Linux Desktop

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux Desktop	Version 3.0

References (6)

http://www.redhat.com/support/errata/RHSA-2005-293.html

Source: secalert@redhat.com

PatchVendor Advisory

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=144059

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9435

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2005-293.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=144059

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9435

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.