CVSS: 5.5EPSS: 0%CPEs: 211EXPL: 0CVE-2006-5823
https://notcve.org/view.php?id=CVE-2006-5823
09 Nov 2006 — The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed filesystem that uses zlib compression that triggers memory corruption, as demonstrated using cramfs. La función zlib_inflate en el núcleo de Linux 2.6.x permite a usuarios locales provocar una denegación de servicio (caída) mediante un sistema de ficheros mal formado que utiliza compresión zlib que provoca una corrupción de memoria, como se ha demostrado utilizando cramfs. • http://projects.info-pull.com/mokb/MOKB-07-11-2006.html •
CVSS: 7.5EPSS: 9%CPEs: 154EXPL: 0CVE-2006-4572
https://notcve.org/view.php?id=CVE-2006-4572
07 Nov 2006 — ip6_tables in netfilter in the Linux kernel before 2.6.16.31 allows remote attackers to (1) bypass a rule that disallows a protocol, via a packet with the protocol header not located immediately after the fragment header, aka "ip6_tables protocol bypass bug;" and (2) bypass a rule that looks for a certain extension header, via a packet with an extension header outside the first fragment, aka "ip6_tables extension header bypass bug." ip6_tables en netfilter en el núcleo de Linux anterior a 2.6.16.31 permite ... • http://readlist.com/lists/vger.kernel.org/linux-kernel/55/275979.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.7EPSS: 0%CPEs: 105EXPL: 2CVE-2006-5757 – Linux Kernel 2.6.x - 'ISO9660' Denial of Service
https://notcve.org/view.php?id=CVE-2006-5757
06 Nov 2006 — Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (infinite loop) by mounting a crafted ISO9660 filesystem containing malformed data structures. Condición de carrera en la función __find_get_block_slow en el sistema de ficheros ISO9660 en Linux 2.6.18 y posiblemente otras versiones permite a usuarios locales provocar una denegación de servicio (bucle infinito) montando un sistema de fishe... • https://www.exploit-db.com/exploits/28912 • CWE-17: DEPRECATED: Code CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 107EXPL: 4CVE-2006-5701 – Linux Kernel 2.6.x - SquashFS Double-Free Denial of Service
https://notcve.org/view.php?id=CVE-2006-5701
03 Nov 2006 — Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem. Vulnerabilidad doble-libre en módulo squashfs en el kernel de Linux 2.6.x, tal y como se usa en Fedora Core 5 y posiblemente otras distribuciones, permite a un usuario local provocar denegación de servicio a través del montado manipualado del sistema de ficheros. • https://www.exploit-db.com/exploits/28895 •
CVSS: 5.5EPSS: 0%CPEs: 209EXPL: 0CVE-2006-5619
https://notcve.org/view.php?id=CVE-2006-5619
31 Oct 2006 — The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18-stable allows local users to cause a denial of service (hang or oops) via unspecified manipulations that trigger an infinite loop while searching for flowlabels. El manejo de (seqfile) ficheros secuenciales (función ip6fl_get_n en ip6_flowlabel.c) en el núcleo de Linux 2.6 hasta 2.6.18-stable permite a usuarios locales provocar una denegación de servicio (cuelgue o "oops") mediante manipulaciones no especificadas... • http://lkml.org/lkml/2006/11/5/46 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2006-5173
https://notcve.org/view.php?id=CVE-2006-5173
17 Oct 2006 — Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which allows local users to cause a denial of service (process crash), as demonstrated using a process that sets the Alignment Check flag (EFLAGS 0x40000), which triggers a SIGBUS in other processes that have an unaligned access. El núcleo de Linux no guarda o restaura adecuadamente EFLAGS durante un cambio de contexto, o reinicia las banderas al crear nuevos hilos, lo cual permite a ... • http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=47a5c6fa0e204a2b63309c648bb2fde36836c826 •
CVSS: 5.5EPSS: 0%CPEs: 106EXPL: 0CVE-2006-4813
https://notcve.org/view.php?id=CVE-2006-4813
12 Oct 2006 — The __block_prepare_write function in fs/buffer.c for Linux kernel 2.6.x before 2.6.13 does not properly clear buffers during certain error conditions, which allows local users to read portions of files that have been unlinked. La función __block_prepare_write en fs/buffer.c para Linux kernel 2.6.x anteriores a 2.6.13 no limpia correctamente los búferes durante ciertas condiciones de error, que permite a usuarios locales leer porciones de ficheros que han sido desvinculados. • http://osvdb.org/31376 •
CVSS: 5.5EPSS: 0%CPEs: 285EXPL: 0CVE-2006-3741
https://notcve.org/view.php?id=CVE-2006-3741
09 Oct 2006 — The perfmonctl system call (sys_perfmonctl) in Linux kernel 2.4.x and 2.6 before 2.6.18, when running on Itanium systems, does not properly track the reference count for file descriptors, which allows local users to cause a denial of service (file descriptor consumption). La llamada al sistema perfmonctl (sys_perfmonctl) en el núcleo Linux 2.4.x y 2.6 anterior a 2.6.18, cuando se ejecuta en sistemas Itanium, no lleva correctamente la cuenta de referencias a los descriptores de fichero, lo que permite a usua... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=204360 •
CVSS: 7.5EPSS: 2%CPEs: 7EXPL: 1CVE-2006-4997
https://notcve.org/view.php?id=CVE-2006-4997
09 Oct 2006 — The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference). La función clip_mkip en net/atm/clip.c del subsistema ATM en el núcleo Linux permite a atacantes remotos provocar una denegación de servicio (panico) mediante vectores no identificados que provocan que el subsisstema ATM acceda a la me... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=206265 • CWE-416: Use After Free •
CVSS: 7.1EPSS: 0%CPEs: 201EXPL: 0CVE-2006-5174
https://notcve.org/view.php?id=CVE-2006-5174
05 Oct 2006 — The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that prevents the unused memory from being cleared in the kernel buffer. La función copy_from_user en el código uaccess en Linux kernel 2.6 anterior a 2.6.19-rc1, cuando funciona sobre s390, no correctamente claro un búfe... • http://lkml.org/lkml/2006/11/5/46 •