CVE-2005-3257

NameCVE-2005-3257
DescriptionThe VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1017-1, DSA-1018-1
NVD severitymedium (attack range: local)
Debian Bugs334113

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kernel-source-2.4.27sourcesarge2.4.27-10sarge2mediumDSA-1018-1
kernel-source-2.6.8sourcesarge2.6.8-16sarge2mediumDSA-1017-1
linux-2.6source(unstable)2.6.14-4medium334113

Search for package or bug name: Reporting problems