Memory Leak Vulnerability in syscall32_setup_pages Function

Memory Leak Vulnerability in syscall32_setup_pages Function

CVE-2005-2617 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

The syscall32_setup_pages function in syscall32.c for Linux kernel 2.6.12 and later, on the 64-bit x86 platform, does not check the return value of the insert_vm_struct function, which allows local users to trigger a memory leak via a 32-bit application with crafted ELF headers.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.