Vulnerabilities > Linux > Linux Kernel > 2.6.12.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-03-27 | CVE-2006-1066 | Local Denial Of Service vulnerability in Linux Kernel Get_Compat_Timespec and PTrace Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace tasks that perform single steps, which can cause corruption of the DEBUG_STACK stack during the do_debug function call. | 1.2 |
| 2006-03-15 | CVE-2006-1242 | Unspecified vulnerability in Linux Kernel The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks. | 5.0 |
| 2006-03-14 | CVE-2006-0457 | Local Copy_To_User Race vulnerability in Linux Kernel Security Key Functions Race condition in the (1) add_key, (2) request_key, and (3) keyctl functions in Linux kernel 2.6.x allows local users to cause a denial of service (crash) or read sensitive kernel memory by modifying the length of a string argument between the time that the kernel calculates the length and when it copies the data into kernel memory. | 7.1 |
| 2006-03-09 | CVE-2006-0742 | Local Denial of Service vulnerability in Linux Kernel die_if_kernel The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux kernel 2.6.x before 2.6.15.6, possibly when compiled with certain versions of gcc, has the "noreturn" attribute set, which allows local users to cause a denial of service by causing user faults on Itanium systems. | 4.6 |
| 2006-03-07 | CVE-2006-0741 | Denial of Service vulnerability in Linux Kernel ELF File Entry Point Linux kernel before 2.6.15.5, when running on Intel processors, allows local users to cause a denial of service ("endless recursive fault") via unknown attack vectors related to a "bad elf entry address." | 1.2 |
| 2006-02-07 | CVE-2006-0454 | Resource Management Errors vulnerability in Linux Kernel Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle when the ip_options_echo function in icmp.c fails, which allows remote attackers to cause a denial of service (crash) via vectors such as (1) record-route and (2) timestamp IP options with the needaddr bit set and a truncated value. | 5.0 |
| 2006-01-31 | CVE-2006-0482 | Local Denial Of Service vulnerability in Linux Kernel Get_Compat_Timespec and PTrace Linux kernel 2.6.15.1 and earlier, when running on SPARC architectures, allows local users to cause a denial of service (hang) via a "date -s" command, which causes invalid sign extended arguments to be provided to the get_compat_timespec function call. | 2.1 |
| 2006-01-06 | CVE-2006-0095 | Local Information Disclosure vulnerability in Linux Kernel DM-Crypt dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure before it is freed, which leads to a memory disclosure that could allow local users to obtain sensitive information about a cryptographic key. | 2.1 |
| 2005-12-31 | CVE-2005-4811 | Local Denial of Service vulnerability in Linux Kernel UnMap_HugePage_Area The hugepage code (hugetlb.c) in Linux kernel 2.6, possibly 2.6.12 and 2.6.13, in certain configurations, allows local users to cause a denial of service (crash) by triggering an mmap error before a prefault, which causes an error in the unmap_hugepage_area function. | 4.9 |
| 2005-12-31 | CVE-2005-4639 | Local Buffer Overflow vulnerability in Linux Kernel DVB Driver Buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST Frontend/Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by "reading more than 8 bytes into an 8 byte long array". | 4.6 |