- EPSS 6.8%
- Veröffentlicht 22.05.2006 16:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:48
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.
CVE-2006-1858
- EPSS 6.16%
- Veröffentlicht 22.05.2006 16:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:48
SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a chunk length that is inconsistent with the actual length of provided parameters.
CVE-2006-1856
- EPSS 2.92%
- Veröffentlicht 19.05.2006 23:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:48
Certain modifications to the Linux kernel 2.6.16 and earlier do not add the appropriate Linux Security Modules (LSM) file_permission hooks to the (1) readv and (2) writev functions, which might allow attackers to bypass intended access restrictions.
CVE-2006-0039
- EPSS 0.3%
- Veröffentlicht 19.05.2006 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:19:46
Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent wit...
CVE-2006-1528
- EPSS 0.44%
- Veröffentlicht 18.05.2006 19:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:08
Linux kernel before 2.6.13 allows local users to cause a denial of service (crash) via a dio transfer from the sg driver to memory mapped (mmap) IO space.
CVE-2006-1855
- EPSS 0.42%
- Veröffentlicht 18.05.2006 19:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:48
choose_new_parent in Linux kernel before 2.6.11.12 includes certain debugging code, which allows local users to cause a denial of service (panic) by causing certain circumstances involving termination of a parent process.
CVE-2006-1859
- EPSS 0.45%
- Veröffentlicht 12.05.2006 01:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:49
Memory leak in __setlease in fs/locks.c in Linux kernel before 2.6.16.16 allows attackers to cause a denial of service (memory consumption) via unspecified actions related to an "uninitialised return value," aka "slab leak."
CVE-2006-1860
- EPSS 0.43%
- Veröffentlicht 12.05.2006 01:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:49
lease_init in fs/locks.c in Linux kernel before 2.6.16.16 allows attackers to cause a denial of service (fcntl_setlease lockup) via actions that cause lease_init to free a lock that might not have been allocated on the stack.
CVE-2006-1052
- EPSS 0.43%
- Veröffentlicht 05.05.2006 12:46:00
- Zuletzt bearbeitet 16.06.2026 22:21:55
The selinux_ptrace logic in hooks.c in SELinux for Linux 2.6.6 allows local users with ptrace permissions to change the tracer SID to an SID of another process.
- EPSS 3.82%
- Veröffentlicht 03.05.2006 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:07
The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote attackers to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function.