The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 up to versions before 2.6.17-rc1 does not zero terminate a buffer when a length of PAGE_SIZE or more is requested, which might allow local users to cause a denial of service (crash) by causing an out-of-bounds read.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 01:58
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2006-04-05 17:04
Updated : 2024-02-28 10:42
NVD link : CVE-2006-1055
Mitre link : CVE-2006-1055
CVE.ORG link : CVE-2006-1055
JSON object : View
Products Affected
linux
- linux_kernel
CWE