CVE-2006-5174

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.19-rc1

Description The issue is related to the copy from user function in the uaccess code of the Linux kernel. When running on s390, this function does not properly clear a kernel buffer. This allows local user space programs to read portions of kernel memory by appending to a file from a bad address, which triggers a fault that prevents the unused memory from being cleared in the kernel buffer.

Recommendations For Linux kernel versions prior to 2.6.19-rc1, update to version 2.6.19-rc1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive kernel memory areas to minimize the risk of exploitation.