Vulnerability Description
The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service (crash) by triggering a free of non-allocated memory.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.4.0 |
Related Weaknesses (CWE)
References
- http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=blobdiff%3B
- http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=
- http://secunia.com/advisories/17917PatchVendor Advisory
- http://secunia.com/advisories/17918PatchVendor Advisory
- http://secunia.com/advisories/18203PatchVendor Advisory
- http://secunia.com/advisories/18510PatchVendor Advisory
- http://secunia.com/advisories/18562PatchVendor Advisory
- http://secunia.com/advisories/18684PatchVendor Advisory
- http://secunia.com/advisories/18977PatchVendor Advisory
- http://secunia.com/advisories/19369PatchVendor Advisory
- http://secunia.com/advisories/19374PatchVendor Advisory
- http://www.debian.org/security/2006/dsa-1017PatchVendor Advisory
- http://www.debian.org/security/2006/dsa-1018PatchVendor Advisory
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:018
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:072
FAQ
What is CVE-2005-3806?
CVE-2005-3806 is a vulnerability with a CVSS score of 6.6 (MEDIUM). The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt ke...
How severe is CVE-2005-3806?
CVE-2005-3806 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3806?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.