CVE-2006-3815 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-3815
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3815

Description: heartbeat.c in heartbeat before 2.0.6 sets insecure permissions in a shmget call for shared memory, which allows local users to cause an unspecified denial of service via unknown vectors, possibly during a short time window on startup.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-326-1 ST 1016602 SAID Secunia Advisory: SA21162 Secunia Advisory: SA21231 Secunia Advisory: SA21240 Secunia Advisory: SA21521 Secunia Advisory: SA21629 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:142 GENTOO http://security.gentoo.org/glsa/glsa-200608-23.xml DEBIAN http://www.debian.org/security/2006/dsa-1128 CONFIRM http://cvs.linux-ha.org/viewcvs/viewcvs.cgi/linux-ha/heartbeat/heartbeat.c?r1=1.513&r2=1.514 http://www.linux-ha.org/_cache/SecurityIssues__sec03.txt http://www.mail-archive.com/linux-ha-cvs%40lists.linux-ha.org/msg00753.html BID 19186

Return to the previous page.