CVE-2005-3105

high

Description

The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying PTE protections.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11283

http://www.redhat.com/support/errata/RHSA-2005-514.html

http://www.intel.com/cd/ids/developer/asmo-na/eng/215766.htm

http://www.debian.org/security/2005/dsa-922

http://secunia.com/advisories/18056

http://linux.bkbits.net:8080/linux-2.6/cset%404248d4019z8HvgrPAji51TKrWiV2uw?nav=index.html%7Csrc/%7Csrc/mm%7Crelated/mm/mprotect.c

Details

Source: Mitre, NVD

Published: 2005-09-30

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Severity: High

EPSS

EPSS: 0.00066