Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1524

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2006-1524
Last Modified 19 Mar 2012 12:00:00
Published 19 Apr 2006 02:18:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-1524

Summary

madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not follow file and mmap restrictions, which allows local users to bypass IPC permissions and replace portions of readonly tmpfs files with zeroes, aka the MADV_REMOVE vulnerability. NOTE: this description was originally written in a way that combined two separate issues. The mprotect issue now has a separate name, CVE-2006-2071.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.16

  • Linux Kernel 2.6.16.1

  • Linux Kernel 2.6.16.2

  • Linux Kernel 2.6.16.3

  • Linux Kernel 2.6.16.4

  • Linux Kernel 2.6.16.5

  • Linux Kernel 2.6.16.6


References

BID - 17587

SECUNIA - 19657

XF - linux-madvise-security-bypass(25870)

VUPEN - ADV-2006-2554

VUPEN - ADV-2006-1475

VUPEN - ADV-2006-1391

OSVDB - 24714

SUSE - SUSE-SA:2006:028

DEBIAN - DSA-1103

DEBIAN - DSA-1097

SECUNIA - 20914

SECUNIA - 20671

SECUNIA - 20398

SECUNIA - 19735

SECUNIA - 19664

FEDORA - FEDORA-2006-423

CONFIRM - http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.6


Last Updated: 27 May 2016 10:42:30