CVE-2005-3181: Low severity Linux Linux kernel vulnerability
The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIGAUDITSYSCALL is enabled, uses an incorrect function to free namescache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows attackers to cause a denial of service (memory consumption).
Affected Software
Event History
Frequently Asked Questions
What is the severity of CVE-2005-3181?
CVE-2005-3181 has a moderate severity rating due to its potential to cause memory leaks leading to denial of service.
How do I fix CVE-2005-3181?
To fix CVE-2005-3181, update your Linux kernel to version 2.6.13.4 or later, where the vulnerability has been addressed.
Which Linux kernel versions are affected by CVE-2005-3181?
CVE-2005-3181 affects Linux kernel versions from 2.6.0 up to and including 2.6.13.3.
What type of vulnerability is CVE-2005-3181?
CVE-2005-3181 is a memory leak vulnerability in the audit system of the Linux kernel.
Can CVE-2005-3181 be exploited remotely?
Exploitation of CVE-2005-3181 requires local access, meaning it cannot be directly exploited remotely.