4.9

CVE-2006-1055

The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 up to versions before 2.6.17-rc1 does not zero terminate a buffer when a length of PAGE_SIZE or more is requested, which might allow local users to cause a denial of service (crash) by causing an out-of-bounds read.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.12
LinuxLinux Kernel Version2.6.12 Updaterc1
LinuxLinux Kernel Version2.6.12 Updaterc4
LinuxLinux Kernel Version2.6.12 Updaterc5
LinuxLinux Kernel Version2.6.12.1
LinuxLinux Kernel Version2.6.12.2
LinuxLinux Kernel Version2.6.12.3
LinuxLinux Kernel Version2.6.12.4
LinuxLinux Kernel Version2.6.12.5
LinuxLinux Kernel Version2.6.12.6
LinuxLinux Kernel Version2.6.13
LinuxLinux Kernel Version2.6.13 Updaterc1
LinuxLinux Kernel Version2.6.13 Updaterc4
LinuxLinux Kernel Version2.6.13 Updaterc6
LinuxLinux Kernel Version2.6.13 Updaterc7
LinuxLinux Kernel Version2.6.13.1
LinuxLinux Kernel Version2.6.13.2
LinuxLinux Kernel Version2.6.13.3
LinuxLinux Kernel Version2.6.13.4
LinuxLinux Kernel Version2.6.14
LinuxLinux Kernel Version2.6.14 Updaterc1
LinuxLinux Kernel Version2.6.14 Updaterc2
LinuxLinux Kernel Version2.6.14 Updaterc3
LinuxLinux Kernel Version2.6.14 Updaterc4
LinuxLinux Kernel Version2.6.14.1
LinuxLinux Kernel Version2.6.14.2
LinuxLinux Kernel Version2.6.14.3
LinuxLinux Kernel Version2.6.14.4
LinuxLinux Kernel Version2.6.14.5
LinuxLinux Kernel Version2.6.15
LinuxLinux Kernel Version2.6.15 Updaterc1
LinuxLinux Kernel Version2.6.15 Updaterc3
LinuxLinux Kernel Version2.6.15 Updaterc4
LinuxLinux Kernel Version2.6.15 Updaterc5
LinuxLinux Kernel Version2.6.15 Updaterc6
LinuxLinux Kernel Version2.6.15 Updaterc7
LinuxLinux Kernel Version2.6.15.1
LinuxLinux Kernel Version2.6.15.2
LinuxLinux Kernel Version2.6.15.3
LinuxLinux Kernel Version2.6.15.4
LinuxLinux Kernel Version2.6.15.5
LinuxLinux Kernel Version2.6.16 Updaterc1
LinuxLinux Kernel Version2.6.17
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.58% 0.432
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/20398
http://www.novell.com/linux/security/advisories/2006-05-31.html
http://secunia.com/advisories/19955
https://usn.ubuntu.com/281-1/
http://www.trustix.org/errata/2006/0020
http://secunia.com/advisories/20716
http://www.ubuntu.com/usn/usn-302-1
http://lwn.net/Alerts/180820/
http://secunia.com/advisories/19495
http://secunia.com/advisories/19735
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6e0dd741a89be35defa05bd79f4211c5a2762825
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=6e0dd741a89be35defa05bd79f4211c5a2762825%3Bhp=597a7679dd83691be2f3a53e1f3f915b4a7f6eba
http://www.osvdb.org/24443
http://www.securityfocus.com/bid/17402
http://www.vupen.com/english/advisories/2006/1273
http://www.vupen.com/english/advisories/2006/1475
https://exchange.xforce.ibmcloud.com/vulnerabilities/25693