Chris Wright

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.20.2 Description: The issue allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference, specifically through the ipv6 getsockopt sticky function in net/ipv6/ipv6 sockglue.c. Recommendations: For versions prior to 2.6.20.2, update to version 2.6.20.2 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Linux Kernel version 2.6.10 Description: The issue allows local users to cause a denial of service, resulting in a kernel crash, by utilizing the `mmap` function to create memory maps with a start address beyond the end address. Recommendations: For Linux Kernel version 2.6.10, consider applying a patch or configuration change to restrict the usage of the `mmap` function to prevent the creation of memory maps with invalid start addresses. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.13 Linux kernel versions prior to 2.6.12.6 **Description** The issue allows local users to cause a denial of service (deadlock) by sending a SIGKILL to a real-time threaded process while it is performing a core dump. This can lead to disruption of service and potential data loss. The `handle stop signal` function in `signal.c` is vulnerable to this issue. **Recommendations** For Linux kernel versions prior to 2.6.13, update to version 2.6.13 or later to resolve the issue. For Linux kernel versions prior to 2.6.12.6, update to version 2.6.12.6 or later to resolve the issue. As a temporary workaround, consider restricting access to real-time threaded processes to minimize the risk of exploitation.