Back to search
CVE-2006-5174
Published: Oct 5, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that prevents the unused memory from being cleared in the kernel buffer.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[linux-kernel] 20061105 Linux 2.6.16.31-rc1
mailing-list
x_refsource_MLIST
oval:org.mitre.oval:def:9885
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2006:079
vendor-advisory
x_refsource_SUSE
kernel-copyfromuser-information-disclosure(29378)
vdb-entry
x_refsource_XF
20379
vdb-entry
x_refsource_BID
RHSA-2007:0014
vendor-advisory
x_refsource_REDHAT
ADV-2006-3938
vdb-entry
x_refsource_VUPEN
http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm
x_refsource_CONFIRM
DSA-1237
vendor-advisory
x_refsource_DEBIAN
24206
third-party-advisory
x_refsource_SECUNIA
1017090
vdb-entry
x_refsource_SECTRACK
23474
third-party-advisory
x_refsource_SECUNIA
23064
third-party-advisory
x_refsource_SECUNIA
DSA-1233
vendor-advisory
x_refsource_DEBIAN
23370
third-party-advisory
x_refsource_SECUNIA
23997
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm
x_refsource_CONFIRM
22497
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0710
vendor-advisory
x_refsource_REDHAT
23395
third-party-advisory
x_refsource_SECUNIA
22289
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now