PT-2006-4603 · Linux+1 · Linux Kernel+1

Marcel Holtmann

Publicado

2006-10-05

Atualizado

2023-02-13

CVE-2006-3741

CVSS v2.0

4.9

Média

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.4.x through 2.6.17

Description The issue is related to the perfmonctl system call in the Linux kernel, which does not properly track the reference count for file descriptors when running on Itanium systems. This allows local users to cause a denial of service by consuming file descriptors.

Recommendations For Linux kernel versions 2.4.x through 2.6.17, consider upgrading to a version 2.6.18 or later to resolve the issue. As a temporary workaround, restrict access to the sys perfmonctl system call to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-3741

DSA-1233

RHSA-2006:0689

RHSA-2006_0689

Produtos afetados

Linux Kernel

Red Hat

PT-2006-4603 · Linux+1 · Linux Kernel+1

CVE-2006-3741

Identificadores relacionados

Produtos afetados

Referências · 124