Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2446

Overview

Vulnerability Score 5.4 5.4
CVE Id CVE-2006-2446
Last Modified 21 Aug 2010 12:47:22
Published 15 Aug 2006 06:04:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-2446

Summary

Race condition between the kfree_skb and __skb_unlink functions in the socket buffer handling in Linux kernel 2.6.9, and possibly other versions, allows remote attackers to cause a denial of service (crash), as demonstrated using the TCP stress tests from the LTP test suite.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.9


References

MISC - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192779

REDHAT - RHSA-2006:0575

BID - 19475

MANDRIVA - MDKSA-2007:025

DEBIAN - DSA-1184

DEBIAN - DSA-1183

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm

SECUNIA - 22417

SECUNIA - 22093

SECUNIA - 22082

SECUNIA - 21465


Last Updated: 27 May 2016 10:42:28