Vulnerabilities > Linux > Linux Kernel > 2.6.14.2

DATE CVE VULNERABILITY TITLE RISK
2006-07-05 CVE-2006-2935 Classic Buffer Overflow vulnerability in multiple products
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
local
low complexity
linux debian canonical CWE-120
4.6
2006-06-23 CVE-2006-3085 Remote Denial of Service vulnerability in Linux Kernel XT_SCTP-netfilter
xt_sctp in netfilter for Linux kernel before 2.6.17.1 allows attackers to cause a denial of service (infinite loop) via an SCTP chunk with a 0 length.
network
low complexity
linux
7.8
2006-05-22 CVE-2006-1858 Improper Input Validation vulnerability in Linux Kernel
SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a chunk length that is inconsistent with the actual length of provided parameters.
network
low complexity
linux CWE-20
7.8
2006-05-22 CVE-2006-1857 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Linux Kernel
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.
network
low complexity
linux CWE-119
critical
9.0
2006-05-19 CVE-2006-1856 Unspecified vulnerability in Linux Kernel
Certain modifications to the Linux kernel 2.6.16 and earlier do not add the appropriate Linux Security Modules (LSM) file_permission hooks to the (1) readv and (2) writev functions, which might allow attackers to bypass intended access restrictions.
network
low complexity
linux
7.5
2006-05-05 CVE-2006-1052 Local Denial of Service vulnerability in Linux Kernel SELinux_PTrace
The selinux_ptrace logic in hooks.c in SELinux for Linux 2.6.6 allows local users with ptrace permissions to change the tracer SID to an SID of another process.
local
low complexity
linux
2.1
2006-04-20 CVE-2006-1056 Cryptographic Issues vulnerability in multiple products
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys.
local
low complexity
freebsd linux CWE-310
2.1
2006-04-19 CVE-2006-1525 Resource Management Errors vulnerability in Linux Kernel
ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference.
local
low complexity
linux CWE-399
4.9
2006-04-18 CVE-2006-0744 Improper Input Validation vulnerability in Linux Kernel
Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T CPUs, which reports an exception in the SYSRET instead of the next instruction, which causes the kernel exception handler to run on the user stack with the wrong GS.
local
low complexity
linux CWE-20
4.9
2006-03-27 CVE-2006-1066 Local Denial Of Service vulnerability in Linux Kernel Get_Compat_Timespec and PTrace
Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace tasks that perform single steps, which can cause corruption of the DEBUG_STACK stack during the do_debug function call.
local
high complexity
linux
1.2