CVE-2006-5174 in Kernelinfo

Summary

The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that prevents the unused memory from being cleared in the kernel buffer.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

10/05/2006

Disclosure

10/10/2006

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
2589	Linux Kernel s390 copy_from_user uninitialized resource	908	Proof-of-Concept	Official fix	CVE-2006-5174

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!