CVE-2006-5751 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-5751
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-5751

Description: Integer overflow in the get_fdb_entries function in net/bridge/br_ioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/30588 UBUNTU http://www.ubuntu.com/usn/usn-395-1 SUSE http://www.novell.com/linux/security/advisories/2007_21_kernel.html http://www.novell.com/linux/security/advisories/2006_79_kernel.html SAID Secunia Advisory: SA23474 Secunia Advisory: SA24206 Secunia Advisory: SA23997 Secunia Advisory: SA23752 Secunia Advisory: SA23593 Secunia Advisory: SA23384 Secunia Advisory: SA23370 Secunia Advisory: SA23252 Secunia Advisory: SA23073 Secunia Advisory: SA24547 REDHAT http://rhn.redhat.com/errata/RHSA-2007-0014.html MISC http://projects.info-pull.com/mokb/MOKB-29-11-2006.html http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=blobdiff;h=4c61a7e0a86e1ae9e16867f9f8e4b0412b8edbaf;hp=4e4119a1213925568b8a1acdef9bf52b98b19da3;hb=ba8379b220509e9448c00a77cf6c15ac2a559cc7;f=net/bridge/br_ioctl.c MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:012 http://www.mandriva.com/security/advisories?name=MDKSA-2007:002 DEBIAN http://www.us.debian.org/security/2006/dsa-1233 CONFIRM http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ba8379b220509e9448c00a77cf6c15ac2a559cc7 http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.18.4 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/453681/100/0/threaded BID 21353

Return to the previous page.