CVE-2006-1055 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-1055
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1055

Description: The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 up to versions before 2.6.17-rc1 does not zero terminate a buffer when a length of PAGE_SIZE or more is requested, which might allow local users to cause a denial of service (crash) by causing an out-of-bounds read.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25693 UBUNTU http://www.ubuntu.com/usn/usn-302-1 http://www.ubuntulinux.org/support/documentation/usn/usn-281-1 TRUSTIX http://www.trustix.org/errata/2006/0020 SUSE http://www.novell.com/linux/security/advisories/2006-05-31.html SAID Secunia Advisory: SA19495 Secunia Advisory: SA19955 Secunia Advisory: SA20716 Secunia Advisory: SA20398 Secunia Advisory: SA19735 OSVDB 24443 FEDORA http://lwn.net/Alerts/180820/ CONFIRM http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=6e0dd741a89be35defa05bd79f4211c5a2762825;hp=597a7679dd83691be2f3a53e1f3f915b4a7f6eba http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=6e0dd741a89be35defa05bd79f4211c5a2762825 BID 17402

Return to the previous page.