CVE-2005-3105

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

30/09/2005

Last modified:

03/04/2025

Description

The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying PTE protections.

Impact

Vector 2.0

AV:L/AC:L/Au:N/C:N/I:N/A:P CVSS v2.0 Severity and Metrics:

Base Score: 2.10 LOW
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Attack Vector (AV): Local
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): None
Integrity (I): None
Availability (A): Physical

Base Score 2.0

2.10

Severity 2.0

LOW

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:o:linux:linux_kernel:2.6.0::itanium_ia64_montecito:::::

To consult the complete list of CPE names with products and versions, see this page

References to Advisories, Solutions, and Tools

http://cache-www.intel.com/cd/00/00/21/57/215792_215792.pdf
http://linux.bkbits.net:8080/linux-2.6/cset%404248d4019z8HvgrPAji51TKrWiV2uw?nav=index.html%7Csrc/%7Csrc/mm%7Crelated/mm/mprotect.c
http://secunia.com/advisories/18056
http://www.debian.org/security/2005/dsa-922
http://www.intel.com/cd/ids/developer/asmo-na/eng/215766.htm
http://www.redhat.com/support/errata/RHSA-2005-514.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11283
http://cache-www.intel.com/cd/00/00/21/57/215792_215792.pdf
http://linux.bkbits.net:8080/linux-2.6/cset%404248d4019z8HvgrPAji51TKrWiV2uw?nav=index.html%7Csrc/%7Csrc/mm%7Crelated/mm/mprotect.c
http://secunia.com/advisories/18056
http://www.debian.org/security/2005/dsa-922
http://www.intel.com/cd/ids/developer/asmo-na/eng/215766.htm
http://www.redhat.com/support/errata/RHSA-2005-514.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11283