Memory Leak in SCSI Procfs Interface in Linux Kernel 2.6.13 and Earlier

Memory Leak in SCSI Procfs Interface in Linux Kernel 2.6.13 and Earlier

CVE-2005-2800 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

Memory leak in the seq_file implementation in the SCSI procfs interface (sg.c) in Linux kernel 2.6.13 and earlier allows local users to cause a denial of service (memory consumption) via certain repeated reads from the /proc/scsi/sg/devices file, which is not properly handled when the next() iterator returns NULL or an error.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.