4.9

CVE-2006-4535

The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service (crash) via an SCTP socket with a certain SO_LINGER value, possibly related to the patch for CVE-2006-3745.  NOTE: older kernel versions for specific Linux distributions are also affected, due to backporting of the CVE-2006-3745 patch.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.17.10
LinuxLinux Kernel Version2.6.17.11
LinuxLinux Kernel Version2.6.18 Updaterc5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.43% 0.345
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/22093
Vendor Advisory
http://www.debian.org/security/2006/dsa-1184
http://www.mandriva.com/security/advisories?name=MDKSA-2007:025
http://secunia.com/advisories/22082
Vendor Advisory
http://www.debian.org/security/2006/dsa-1183
http://secunia.com/advisories/22292
Vendor Advisory
http://secunia.com/advisories/22945
http://support.avaya.com/elmodocs2/security/ASA-2006-249.htm
http://www.redhat.com/support/errata/RHSA-2006-0689.html
http://secunia.com/advisories/22382
http://www.mandriva.com/security/advisories?name=MDKSA-2006:182
http://secunia.com/advisories/21967
Vendor Advisory
http://www.ubuntu.com/usn/usn-347-1
http://secunia.com/advisories/21945
Vendor Advisory
http://securitytracker.com/id?1016992
http://www.mail-archive.com/kernel-svn-changes%40lists.alioth.debian.org/msg02314.html
http://www.securityfocus.com/bid/20087
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=204460
https://exchange.xforce.ibmcloud.com/vulnerabilities/29011
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10530