Vulnerabilities > Linux > Linux Kernel > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-08-21 | CVE-2006-4093 | Local Denial of Service vulnerability in Linux Kernel PPC970 Systems Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on PowerPC PPC970 systems allows local users to cause a denial of service (crash) related to the "HID0 attention enable on PPC970 at boot time." Upgrade to Linux Kernel version 2.4.33.1 | 4.9 |
| 2006-08-21 | CVE-2006-4145 | Resource Management Errors vulnerability in Linux Kernel The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command. | 4.9 |
| 2006-08-15 | CVE-2006-2446 | Socket Buffer Handling Remote Denial of Service vulnerability in Linux Kernel 2.6.9 Race condition between the kfree_skb and __skb_unlink functions in the socket buffer handling in Linux kernel 2.6.9, and possibly other versions, allows remote attackers to cause a denial of service (crash), as demonstrated using the TCP stress tests from the LTP test suite. | 5.4 |
| 2006-07-05 | CVE-2006-2935 | Classic Buffer Overflow vulnerability in multiple products The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow. | 4.6 |
| 2006-05-27 | CVE-2006-2629 | Local Denial of Service vulnerability in Linux Kernel Proc dentry_unused Corruption Race condition in Linux kernel 2.6.15 to 2.6.17, when running on SMP platforms, allows local users to cause a denial of service (crash) by creating and exiting a large number of tasks, then accessing the /proc entry of a task that is exiting, which causes memory corruption that leads to a failure in the prune_dcache function or a BUG_ON error in include/linux/list.h. | 4.0 |
| 2006-05-24 | CVE-2006-1862 | Denial-Of-Service vulnerability in Linux Kernel 2.6.9 The virtual memory implementation in Linux kernel 2.6.x allows local users to cause a denial of service (panic) by running lsof a large number of times in a way that produces a heavy system load. | 4.9 |
| 2006-05-03 | CVE-2006-1527 | Remote Denial of Service vulnerability in Linux Kernel 2.6.16.12 The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote attackers to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function. | 5.0 |
| 2006-04-26 | CVE-2006-1864 | Unspecified vulnerability in Linux Kernel Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863. | 4.6 |
| 2006-04-19 | CVE-2006-1525 | Resource Management Errors vulnerability in Linux Kernel ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference. | 4.9 |
| 2006-04-18 | CVE-2006-0744 | Improper Input Validation vulnerability in Linux Kernel Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T CPUs, which reports an exception in the SYSRET instead of the next instruction, which causes the kernel exception handler to run on the user stack with the wrong GS. | 4.9 |