Denial of Service Vulnerability in Linux Kernel by The SCM Layer
CVE-2004-1016

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Ubuntu Linux
Vendor: CVE Published:; 10 January 2005

Summary

The scm_send function within the SCM layer of the Linux kernel versions 2.4.x up to 2.4.28 and 2.6.x up to 2.6.9 can be exploited by local users. By sending crafted auxiliary messages to the sendmsg function, the users can create a deadlock condition that results in a denial of service, effectively causing the system to hang. It is crucial for system administrators to understand the risk posed by this vulnerability and apply the relevant security patches.

References

http://secunia.com/advisories/20163

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/18483

vdb-entryx_refsource_XF

http://www.debian.org/security/2006/dsa-1082

vendor-advisoryx_refsource_DEBIAN

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Nov 4, 2004