CVE-2006-2071
- EPSS 0.41%
- Veröffentlicht 27.04.2006 17:06:00
- Zuletzt bearbeitet 16.06.2026 22:24:17
Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permission to the attachment. NOTE: some original raw sources combined this issu...
CVE-2006-1864
- EPSS 1.16%
- Veröffentlicht 26.04.2006 18:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:49
Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.
CVE-2006-1863
- EPSS 1.02%
- Veröffentlicht 25.04.2006 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:49
Directory traversal vulnerability in CIFS in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1864.
CVE-2006-1056
- EPSS 0.45%
- Veröffentlicht 20.04.2006 10:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:56
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allow...
CVE-2006-1524
- EPSS 0.43%
- Veröffentlicht 19.04.2006 18:18:00
- Zuletzt bearbeitet 16.06.2026 22:23:07
madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not follow file and mmap restrictions, which allows local users to bypass IPC permissions and replace portions of readonly tmpfs files with zeroes, aka the MADV_REMOVE vulnerability. NOTE: th...
CVE-2006-1525
- EPSS 0.44%
- Veröffentlicht 19.04.2006 18:18:00
- Zuletzt bearbeitet 16.06.2026 22:23:07
ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference.
CVE-2006-0744
- EPSS 0.47%
- Veröffentlicht 18.04.2006 10:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:11
Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T CPUs, which reports an exception in the SYSRET instead of the next instruction, which causes the kernel exception handler to run on the user stack with ...
CVE-2006-0558
- EPSS 0.41%
- Veröffentlicht 14.04.2006 21:02:00
- Zuletzt bearbeitet 16.06.2026 22:20:50
perfmon (perfmon.c) in Linux kernel on IA64 architectures allows local users to cause a denial of service (crash) by interrupting a task while another process is accessing the mm_struct, which triggers a BUG_ON action in the put_page_testzero functio...
- EPSS 2.55%
- Veröffentlicht 12.04.2006 23:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:07
The __group_complete_signal function in the RCU signal handling (signal.c) in Linux kernel 2.6.16, and possibly other versions, has unknown impact and attack vectors related to improper use of BUG_ON.
CVE-2006-1522
- EPSS 0.44%
- Veröffentlicht 10.04.2006 20:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:07
The sys_add_key function in the keyring code in Linux kernel 2.6.16.1 and 2.6.17-rc1, and possibly earlier versions, allows local users to cause a denial of service (OOPS) via keyctl requests that add a key to a user key instead of a keyring key, whi...