VDB
CVE-2006-2935
CVE-2006-2935
PUBLISHED
Reported by redhat · Published July 5, 2006
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, *, n/a |
Timeline
- Jul 5, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- USN-331-1 vendor-advisoryx_refsource_UBUNTU
- 21934 third-party-advisoryx_refsource_SECUNIA
- SUSE-SA:2006:042 vendor-advisoryx_refsource_SUSE
- RHSA-2007:0012 vendor-advisoryx_refsource_REDHAT
- RHSA-2006:0617 vendor-advisoryx_refsource_REDHAT
- x_refsource_MISC
- 21298 third-party-advisoryx_refsource_SECUNIA
- 23788 third-party-advisoryx_refsource_SECUNIA
- 21695 third-party-advisoryx_refsource_SECUNIA
- 21605 third-party-advisoryx_refsource_SECUNIA
- SUSE-SA:2006:047 vendor-advisoryx_refsource_SUSE
- DSA-1183 vendor-advisoryx_refsource_DEBIAN
- MDKSA-2006:150 vendor-advisoryx_refsource_MANDRIVA
- RHSA-2007:0013 vendor-advisoryx_refsource_REDHAT
- MDKSA-2006:151 vendor-advisoryx_refsource_MANDRIVA
- 22082 third-party-advisoryx_refsource_SECUNIA
- 21614 third-party-advisoryx_refsource_SECUNIA
- SUSE-SA:2006:064 vendor-advisoryx_refsource_SUSE
- linux-dvdreadbca-bo(27579) vdb-entryx_refsource_XF
- 22174 third-party-advisoryx_refsource_SECUNIA
…and 20 more