CVE-2006-5755
5.8 Medium
AI Score
Confidence
High
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
49.2%
Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context switch, which allows local users to cause a denial of service (crash) by causing SYSENTER to set an NT flag, which can trigger a crash on the IRET of the next task.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux:linux_kernel | linux linux kernel | le | 2.6.17 |
References
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=658fdbef66e5e9be79b457edc2cbbb3add840aa9
kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=658fdbef66e5e9be79b457edc2cbbb3add840aa9
secunia.com/advisories/24098
secunia.com/advisories/25691
secunia.com/advisories/26620
secunia.com/advisories/26994
secunia.com/advisories/32485
www.debian.org/security/2007/dsa-1381
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.18
www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.18-git13.log
www.mandriva.com/security/advisories?name=MDKSA-2007:171
www.redhat.com/support/errata/RHSA-2008-0957.html
www.securityfocus.com/archive/1/471457
www.securityfocus.com/bid/26060
www.ubuntu.com/usn/usn-416-1
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9554
Social References
More
Related
5.8 Medium
AI Score
Confidence
High
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
49.2%