3.6
CVE-2006-1524
- EPSS 0.43%
- Veröffentlicht 19.04.2006 18:18:00
- Zuletzt bearbeitet 16.06.2026 22:23:07
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not follow file and mmap restrictions, which allows local users to bypass IPC permissions and replace portions of readonly tmpfs files with zeroes, aka the MADV_REMOVE vulnerability. NOTE: this description was originally written in a way that combined two separate issues. The mprotect issue now has a separate name, CVE-2006-2071.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version2.6.16
Linux ≫ Linux Kernel Version2.6.16.1
Linux ≫ Linux Kernel Version2.6.16.2
Linux ≫ Linux Kernel Version2.6.16.3
Linux ≫ Linux Kernel Version2.6.16.4
Linux ≫ Linux Kernel Version2.6.16.5
Linux ≫ Linux Kernel Version2.6.16.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.43% | 0.339 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 3.6 | 3.9 | 4.9 |
AV:L/AC:L/Au:N/C:P/I:P/A:N
|
http://secunia.com/advisories/20914
http://www.debian.org/security/2006/dsa-1103
http://www.vupen.com/english/advisories/2006/2554
http://secunia.com/advisories/20398
http://www.novell.com/linux/security/advisories/2006-05-31.html
http://secunia.com/advisories/20671
http://www.debian.org/security/2006/dsa-1097
http://lwn.net/Alerts/180820/
http://secunia.com/advisories/19735
http://www.vupen.com/english/advisories/2006/1475
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.6
http://secunia.com/advisories/19657
http://secunia.com/advisories/19664
http://www.osvdb.org/24714
http://www.securityfocus.com/bid/17587
http://www.vupen.com/english/advisories/2006/1391
https://exchange.xforce.ibmcloud.com/vulnerabilities/25870