Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent with allocated memory, which leads to a buffer over-read in IPT_ENTRY_ITERATE.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2006-05-19T22:00:00

Updated: 2024-08-07T16:18:20.649Z

Reserved: 2005-12-20T00:00:00

Link: CVE-2006-0039

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-05-19T22:02:00.000

Modified: 2024-11-21T00:05:31.000

Link: CVE-2006-0039

cve-icon Redhat

Severity : Low

Publid Date: 2006-05-16T00:00:00Z

Links: CVE-2006-0039 - Bugzilla