Vulnerabilities > Trustix > Secure Linux > Low

DATE CVE VULNERABILITY TITLE RISK
2005-05-03 CVE-2005-1410 The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.
local
low complexity
postgresql trustix
2.1
2005-05-02 CVE-2005-0988 Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
local
high complexity
gnu freebsd gentoo redhat trustix turbolinux ubuntu
3.7
2005-01-10 CVE-2004-1073 Local Privilege Escalation vulnerability in Linux Kernel BINFMT_ELF Loader
The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.
local
low complexity
linux redhat suse trustix turbolinux
2.1
2005-01-10 CVE-2004-1074 Local Denial Of Service And Memory Disclosure vulnerability in Linux Kernel
The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary.
local
low complexity
linux redhat suse trustix turbolinux
2.1
2004-12-06 CVE-2004-0497 Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. 2.1
2004-12-06 CVE-2004-0565 Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.
local
low complexity
mandrakesoft gentoo linux trustix
2.1
2004-11-23 CVE-2004-0415 Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory.
local
low complexity
linux redhat trustix
2.1
2002-12-11 CVE-2002-1319 Denial Of Service vulnerability in Linux Kernel 2.4 System Call TF Flag
The Linux kernel 2.4.20 and earlier, and 2.5.x, when running on x86 systems, allows local users to cause a denial of service (hang) via the emulation mode, which does not properly clear TF and NT EFLAGs.
local
low complexity
linux trustix
2.1
2001-03-26 CVE-2001-0169 When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib.
local
low complexity
mandrakesoft redhat trustix turbolinux
2.1
2001-03-12 CVE-2001-0117 sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack.
local
high complexity
immunix mandrakesoft redhat trustix
1.2