Vulnerabilities > Linux > Linux Kernel > 2.6.16.29

DATE CVE VULNERABILITY TITLE RISK
2006-12-19 CVE-2006-6106 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Linux Kernel
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via CAPI messages with a large value for the length of the (1) manu (manufacturer) or (2) serial (serial number) field.
network
low complexity
linux CWE-119
7.5
2006-11-22 CVE-2006-6060 Denial-Of-Service vulnerability in kernel
The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18, and possibly other versions, allows local users to cause a denial of service (CPU consumption) via a malformed NTFS file stream that triggers an infinite loop in the __find_get_block_slow function.
local
low complexity
linux
4.9
2006-11-22 CVE-2006-6058 Numeric Errors vulnerability in Linux Kernel
The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loop in the minix_bmap function.
local
high complexity
linux CWE-189
4.0
2006-11-22 CVE-2006-6057 Denial-Of-Service vulnerability in kernel
The Linux kernel 2.6.x up to 2.6.18, and possibly other versions, on Fedora Core 6 and possibly other operating systems, allows local users to cause a denial of service (crash) via a malformed gfs2 file stream that triggers a NULL pointer dereference in the init_journal function.
local
low complexity
linux
4.9
2006-11-22 CVE-2006-6056 Denial-Of-Service vulnerability in kernel
Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an HFS filesystem image.
local
low complexity
linux
4.9
2006-11-22 CVE-2006-6054 Denial-Of-Service vulnerability in kernel
The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext2 stream with malformed data structures that triggers an error in the ext2_check_page due to a length that is smaller than the minimum.
local
high complexity
linux
4.0
2006-11-22 CVE-2006-6053 Denial-Of-Service vulnerability in kernel
The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream with malformed data structures.
local
low complexity
linux
4.9
2006-10-10 CVE-2006-4997 Use After Free vulnerability in multiple products
The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).
network
low complexity
linux canonical redhat CWE-416
7.5
2006-08-23 CVE-2006-3745 Buffer Overflow vulnerability in Linux Kernel SCTP_Make_Abort_User Function
Unspecified vulnerability in the sctp_make_abort_user function in the SCTP implementation in Linux 2.6.x before 2.6.17.10 and 2.4.23 up to 2.4.33 allows local users to cause a denial of service (panic) and possibly gain root privileges via unknown attack vectors.
local
low complexity
linux
7.2
2006-08-21 CVE-2006-4093 Local Denial of Service vulnerability in Linux Kernel PPC970 Systems
Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on PowerPC PPC970 systems allows local users to cause a denial of service (crash) related to the "HID0 attention enable on PPC970 at boot time." Upgrade to Linux Kernel version 2.4.33.1
local
low complexity
linux canonical debian
4.9