[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250363

 
 

909

 
 

196124

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0565Date: (C)2004-12-06   (M)2023-12-22


Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
BID-10687
SECUNIA-20162
SECUNIA-20163
SECUNIA-20202
SECUNIA-20338
DSA-1067
DSA-1069
DSA-1070
DSA-1082
MDKSA-2004:066
RHSA-2004:504
http://archives.neohapsis.com/archives/linux/owl/2004-q2/0038.html
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124734
linux-ia64-info-disclosure(16644)
oval:org.mitre.oval:def:10714

CPE    10
cpe:/o:trustix:secure_linux:2
cpe:/o:linux:linux_kernel:2.4.0
cpe:/o:mandrakesoft:mandrake_linux:9.1
cpe:/o:gentoo:linux
...

© SecPod Technologies