Vulnerability Description
The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 2.6.18 |
| Canonical | Ubuntu Linux | 5.10 |
| Redhat | Enterprise Linux | 2.1 |
Related Weaknesses (CWE)
References
- http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=206265ExploitIssue Tracking
- http://secunia.com/advisories/22253Broken LinkVendor Advisory
- http://secunia.com/advisories/22279Broken LinkPatchVendor Advisory
- http://secunia.com/advisories/22292Broken LinkPatchVendor Advisory
- http://secunia.com/advisories/22497Broken Link
- http://secunia.com/advisories/22762Broken Link
- http://secunia.com/advisories/22945Broken Link
- http://secunia.com/advisories/23064Broken Link
- http://secunia.com/advisories/23370Broken Link
- http://secunia.com/advisories/23384Broken Link
- http://secunia.com/advisories/23395Broken Link
- http://secunia.com/advisories/23474Broken Link
- http://secunia.com/advisories/23752Broken Link
- http://secunia.com/advisories/23788Broken Link
- http://secunia.com/advisories/24288Broken Link
FAQ
What is CVE-2006-4997?
CVE-2006-4997 is a vulnerability with a CVSS score of 7.5 (HIGH). The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access th...
How severe is CVE-2006-4997?
CVE-2006-4997 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-4997?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Canonical Ubuntu Linux, Redhat Enterprise Linux.