CVE-2005-2555

Publication date 16 August 2005

Last updated 24 July 2024

Ubuntu priority

Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAP_NET_ADMIN capability, which could allow local users to conduct unauthorized activities via (1) ipv4/ip_sockglue.c and (2) ipv6/ipv6_sockglue.c.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
kernel-source-2.4.27	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.4.27-12
	6.06 LTS dapper	Fixed 2.4.27-12
linux-source-2.6.15	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Fixed 2.6.15-29.58
linux-source-2.6.17	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.6.17.1-12.40
	6.06 LTS dapper	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-169-1
Linux kernel vulnerabilities
19 August 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-2555