CVE-2004-0814 in Kernelinfo

Summary

Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote attackers to cause a denial of service (panic) by switching from console to PPP line discipline, then quickly sending data that is received during the switch.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

08/25/2004

Disclosure

12/23/2004

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
947Linux Kernel hugetlbfs privileges management269Not definedOfficial fixCVE-2004-0814
946Linux Kernel ReiserFS setxattr denial of service404Not definedOfficial fixCVE-2004-0814
945Linux Kernel Terminal denial of service404Not definedOfficial fixCVE-2004-0814
944Linux Kernel Terminal denial of service404Not definedOfficial fixCVE-2004-0814

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!