The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Raw character devices (raw.c) in the Linux kernel 2.6.x call the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space, a similar vulnerability to CVE-2005-1589.
|21937||CentOS 4 : kernel (CESA-2005:420)||Nessus||CentOS Local Security Checks|
|20522||Ubuntu 4.10 / 5.04 : linux-source-184.108.40.206, linux-source-2.6.10 vulnerabilities (USN-131-1)||Nessus||Ubuntu Local Security Checks|
|18598||Mandrake Linux Security Advisory : kernel (MDKSA-2005:110)||Nessus||Mandriva Local Security Checks|
|18444||RHEL 4 : kernel (RHSA-2005:420)||Nessus||Red Hat Local Security Checks|
|801407||CentOS RHSA-2005-420 Security Check||Log Correlation Engine||Generic|