CVE DATABASE / CVE-2005-3181
CVE-2005-3181
CVSS 2.1 · LOW
Summary
The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows attackers to cause a denial of service (memory consumption).
CVSS 2.0 breakdown
| Base score | 2.1 (LOW) |
| Vector | AV:L/AC:L/Au:N/C:N/I:N/A:P |
| Attack vector | LOCAL |
| Attack complexity | LOW |
| Confidentiality | NONE |
| Integrity | NONE |
| Availability | PARTIAL |
Weakness type (CWE)
Affected products
Linux linux kernelCanonical ubuntu linuxDebian debian linuxMandriva linux
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=829841146878e082613a49581ae252c071057c23
- http://linux.bkbits.net:8080/linux-2.6/cset%404346883bQBeBd26syWTKX2CVC5bDcA
- http://secunia.com/advisories/17114
- http://secunia.com/advisories/17280
- http://secunia.com/advisories/17364
- http://secunia.com/advisories/17826
- http://secunia.com/advisories/17917
- http://secunia.com/advisories/19374
- http://www.debian.org/security/2006/dsa-1017
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:235
- http://www.redhat.com/support/errata/RHSA-2005-808.html
- http://www.securityfocus.com/advisories/9549
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.