CVE-2005-0176 - Tied Spunk

Description

The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes which could cause sensitive memory to be swapped to disk which could allow it to be read by other users once it has been released.

Reference

http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930 http://www.redhat.com/support/errata/RHSA-2005-092.html http://www.redhat.com/support/errata/RHSA-2005-472.html http://www.securityfocus.com/bid/12598 ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U http://secunia.com/advisories/19607 http://marc.info/?l=full-disclosure&m=110846102231365&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8778 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1225