Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3634

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2006-3634
Last Modified 19 Jan 2011 12:00:00
Published 04 Aug 2006 07:04:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-3634

Summary

The (1) __futex_atomic_op and (2) futex_atomic_cmpxchg_inatomic functions in Linux kernel 2.6.17-rc4 to 2.6.18-rc2 perform the atomic futex operation in the kernel address space instead of the user address space, which allows local users to cause a denial of service (crash).

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.17

  • Linux Kernel 2.6.18


References

MISC - http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=bafe00cc9297ca77b66e5c83e5e65e17c0c997c8

CONFIRM - http://security-tracker.debian.org/tracker/CVE-2006-3634


Last Updated: 27 May 2016 10:43:05