4.6

CVE-2006-2935

The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.2.16 <= 2.16.16
DebianDebian Linux Version3.1
CanonicalUbuntu Linux Version5.04
CanonicalUbuntu Linux Version5.10
CanonicalUbuntu Linux Version6.06
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.58% 0.429
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

http://secunia.com/advisories/21605
Broken Link
http://secunia.com/advisories/22093
Broken Link
http://secunia.com/advisories/22174
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2006-203.htm
Third Party Advisory
http://www.debian.org/security/2006/dsa-1184
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2006-0617.html
Broken Link
http://secunia.com/advisories/22082
Broken Link
http://www.debian.org/security/2006/dsa-1183
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:150
Broken Link
http://secunia.com/advisories/21614
Broken Link
http://www.mandriva.com/security/advisories?name=MDKSA-2006:151
Broken Link
http://secunia.com/advisories/21179
Broken Link
http://secunia.com/advisories/21498
Broken Link
http://www.novell.com/linux/security/advisories/2006_42_kernel.html
Broken Link
http://www.novell.com/linux/security/advisories/2006_47_kernel.html
Broken Link
http://secunia.com/advisories/22497
Broken Link
http://secunia.com/advisories/23064
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2006-0710.html
Broken Link
http://secunia.com/advisories/22822
Broken Link
http://www.novell.com/linux/security/advisories/2006_64_kernel.html
Broken Link
http://secunia.com/advisories/21298
Broken Link
http://secunia.com/advisories/21934
Broken Link
http://www.ubuntu.com/usn/usn-331-1
Third Party Advisory
http://www.ubuntu.com/usn/usn-346-1
Third Party Advisory
http://bugzilla.kernel.org/show_bug.cgi?id=2966
Vendor Advisory
Issue Tracking
http://secunia.com/advisories/21695
Broken Link
http://secunia.com/advisories/23788
Broken Link
http://secunia.com/advisories/24288
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2007-078.htm
Third Party Advisory
http://www.novell.com/linux/security/advisories/2006_49_kernel.html
Broken Link
http://www.redhat.com/support/errata/RHSA-2007-0012.html
Broken Link
http://www.redhat.com/support/errata/RHSA-2007-0013.html
Broken Link
http://www.securityfocus.com/archive/1/444887/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/18847
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2006/2680
Broken Link
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=197670
Third Party Advisory
Issue Tracking
https://exchange.xforce.ibmcloud.com/vulnerabilities/27579
Third Party Advisory
VDB Entry
https://issues.rpath.com/browse/RPL-611
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10886
Third Party Advisory