EUVD-2006-0564

Malware in sbrugna...

SUSE CVE-2006-0557

sysmbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not sanity check the maxnod variable before making certain computations for the getnodes function, which has unknown impact and attack vectors...

Ubuntu 5.04 / 5.10 : linux-source-2.6.10, linux-source-2.6.12 vulnerabilities (USN-281-1)

The sysmbind function did not properly verify the validity of the 'maxnod' argument. A local user could exploit this to trigger a buffer overflow, which caused a kernel crash. CVE-2006-0557 The SELinux module did not correctly handle the tracer SID when a process was already being traced. A local...

[Full-disclosure] [USN-281-1] Linux kernel vulnerabilities

=========================================================== Ubuntu Security Notice USN-281-1 May 04, 2006 linux-source-2.6.10, linux-source-2.6.12 vulnerabilities CVE-2006-0557, CVE-2006-1052, CVE-2006-1055, CVE-2006-1066, CVE-2006-1242, CVE-2006-1343, CVE-2006-1368, CVE-2006-1525...

Code injection

sysmbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not sanity check the maxnod variable before making certain computations for the getnodes function, which has unknown impact and attack vectors...

CVE-2006-0557

CVE-2006-0557 : In the Linux kernel 2.6.x, the sys_mbind path in mempolicy.c failed to sanity-check the maxnod value before computing in get_nodes, enabling a local user to trigger a kernel crash (DoS). Public advisories tie this to local exploitation with kernel crashes, not remote code executio...

CVE-2006-0557

sysmbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not sanity check the maxnod variable before making certain computations for the getnodes function, which has unknown impact and attack vectors...