VYPR
Medium severity5.5NVD Advisory· Published Aug 4, 2005· Updated Jun 16, 2026

CVE-2005-2456

CVE-2005-2456

Description

Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OUT, which is used as an index in the sock->sk_policy array.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • Linux/Kernel2 versions
    cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*
    • (no CPE)range: 2.6

Patches

Vulnerability mechanics

References

23

News mentions

0

No linked articles in our index yet.