CVE Catalog

CVE-1999-1285

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.34%

25th percentile — higher than 25% of all known CVEs

Summary

Linux versions 2.1.132 and earlier allow local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /dev/urandom), which cannot be interrupted until the read has completed.

Risk Assessment

Denial of service can lead to disruption of system operations, affecting service availability for other users.

Recommendation

It is recommended to update the system to a newer version to mitigate the risk associated with this vulnerability.

Original NVD description (English source)

Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /dev/urandom), which cannot be interrupted until the read has completed.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS