Published: 23/06/2006 Updated: 13/02/2023

CVSS v2 Base Score: 5.6 | Impact Score: 9.2 | Exploitability Score: 1.9

VMScore: 498

Vector: AV:L/AC:H/Au:N/C:C/I:N/A:C

Linux kernel prior to 2.6.16.21 and 2.6.17, when running on PowerPC, does not perform certain required access_ok checks, which allows local users to read arbitrary kernel memory on 64-bit systems (signal_64.c) and cause a denial of service (crash) and possibly read kernel memory on 32-bit systems (signal_32.c).

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.11
linux linux kernel 2.6.4
linux linux kernel 2.6.16.16
linux linux kernel 2.6.16.9
linux linux kernel 2.6.12
linux linux kernel 2.6.14
linux linux kernel 2.6.5
linux linux kernel 2.6.15.3
linux linux kernel 2.6.10
linux linux kernel 2.6.13
linux linux kernel 2.6.1
linux linux kernel 2.6.16.6
linux linux kernel 2.6.16.8
linux linux kernel 2.6.16
linux linux kernel 2.6.7
linux linux kernel 2.6.3
linux linux kernel 2.6.15
linux linux kernel 2.6.13.3
linux linux kernel 2.6.11.8
linux linux kernel 2.6.14.4
linux linux kernel 2.6.16.18
linux linux kernel 2.6.14.3
linux linux kernel 2.6.11.6
linux linux kernel 2.6.11.11
linux linux kernel 2.6.0
linux linux kernel 2.6.16.13
linux linux kernel 2.6.9
linux linux kernel 2.6.16.4
linux linux kernel 2.6.16.15
linux linux kernel 2.6_test9_cvs
linux linux kernel 2.6.15.1
linux linux kernel 2.6.11.5
linux linux kernel 2.6.16.1
linux linux kernel 2.6.8
linux linux kernel 2.6.2
linux linux kernel 2.6.6
linux linux kernel 2.6.14.5
linux linux kernel 2.6.13.2
linux linux kernel 2.6.16.11
linux linux kernel 2.6.16.14
linux linux kernel 2.6.14.1
linux linux kernel 2.6.12.5
linux linux kernel 2.6.16.3
linux linux kernel 2.6.12.1
linux linux kernel 2.6.13.4
linux linux kernel 2.6.12.2
linux linux kernel 2.6.15.2
linux linux kernel 2.6.16.10
linux linux kernel 2.6.12.4
linux linux kernel 2.6.12.3
linux linux kernel 2.6.15.4
linux linux kernel 2.6.16.12
linux linux kernel 2.6.12.6
linux linux kernel 2.6.11.7
linux linux kernel 2.6.16.2
linux linux kernel 2.6.14.2
linux linux kernel 2.6.16.7
linux linux kernel 2.6.16.5
linux linux kernel 2.6.16.19
linux linux kernel 2.6.11.12
linux linux kernel 2.6.16.20
linux linux kernel 2.6.15.5
linux linux kernel 2.6.13.1

A race condition was discovered in the do_add_counters() functions Processes which do not run with full root privileges, but have the CAP_NET_ADMIN capability can exploit this to crash the machine or read a random piece of kernel memory In Ubuntu there are no packages that are affected by this, so this can only be an issue for you if you use thi ...

NVD-CWE-Other http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.21 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=194215 http://www.securityfocus.com/bid/18616 http://www.trustix.org/errata/2006/0037 http://secunia.com/advisories/20831 http://www.ubuntu.com/usn/usn-311-1 http://secunia.com/advisories/20991 http://secunia.com/advisories/20703 http://www.novell.com/linux/security/advisories/2006_42_kernel.html http://secunia.com/advisories/21179 http://www.redhat.com/support/errata/RHSA-2006-0575.html http://www.novell.com/linux/security/advisories/2006_47_kernel.html http://secunia.com/advisories/21465 http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm http://secunia.com/advisories/22417 http://secunia.com/advisories/21498 http://www.vupen.com/english/advisories/2006/2451 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10040 http://www.securityfocus.com/archive/1/438168/100/0/threaded http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7c85d1f9d358b24c5b05c3a2783a78423775a080 https://nvd.nist.gov https://usn.ubuntu.com/311-1/

CVE-2006-2448

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect