CVE-2006-2445 — Vulnetix

CVE-2006-2445 PUBLISHED CVSS 4 MEDIUM

Race condition in run_posix_cpu_timers in Linux kernel before 2.6.16.21 allows local users to cause a denial of service (BUG_ON crash) by causing one CPU to attach a timer to a process that is exiting.

EPSS 0.09% · 24.9th percentile

Risk Scores

CVSS 2.0

EPSS Score

0.09%

24.9th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
linux	linux_kernel	2.6.0, 2.6.0, 2.6.0

Exploit Intelligence

20703 (circl)
ADV-2006-2451 (circl)
SUSE-SA:2006:042 (circl)
20060623 rPSA-2006-0110-1 kernel (circl)
26947 (circl)
linux-runposixcputimers-dos(27380) (circl)
MDKSA-2006:123 (circl)
MDKSA-2006:151 (circl)
[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks (circl)
2006-0037 (circl)

…and 8 more exploits

Timeline

Jun 23, 2006 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 17, 2023 EPSS Score

References

20703 third-party-advisory
ADV-2006-2451 vdb
SUSE-SA:2006:042 vendor-advisory
20060623 rPSA-2006-0110-1 kernel mailing-list
26947 vdb
linux-runposixcputimers-dos(27380) vdb
MDKSA-2006:123 vendor-advisory
MDKSA-2006:151 vendor-advisory
[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks mailing-list
2006-0037 vendor-advisory
USN-311-1 vendor-advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.21 url
18615 vdb
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=30f1e3dd8c72abda343bcf415f7d8894a02b4290 url
20831 third-party-advisory
21045 third-party-advisory
20991 third-party-advisory
21179 third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2006-2445 advisory
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=30f1e3dd8c72abda343bcf415f7d8894a02b4290 url

Open in Interactive Console →