CVE-2006-5173
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
5.1%
Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which allows local users to cause a denial of service (process crash), as demonstrated using a process that sets the Alignment Check flag (EFLAGS 0x40000), which triggers a SIGBUS in other processes that have an unaligned access.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | cpe:/o:linux:linux_kernel:::: |
References
kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=47a5c6fa0e204a2b63309c648bb2fde36836c826
secunia.com/advisories/23361
secunia.com/advisories/23384
secunia.com/advisories/23474
secunia.com/advisories/23593
secunia.com/advisories/25691
www.mandriva.com/security/advisories?name=MDKSA-2007:002
www.novell.com/linux/security/advisories/2006_79_kernel.html
www.securityfocus.com/archive/1/471457
www.securityfocus.com/bid/21851
www.ubuntu.com/usn/usn-395-1
Related
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
5.1%