The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:L/AC:L/Au:S/C:N/I:N/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux

Configuration 1 [-]

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test10:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test11:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test12:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test8:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.0:test9:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.11:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.17:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:*:x86:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.18:pre8:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:pre2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:pre3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:pre4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:pre5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.19:pre6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.20:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.21:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.21:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.21:pre4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.21:pre7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.24:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.25:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.26:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.27:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.27:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.27:pre2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.27:pre3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.27:pre4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.27:pre5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.28:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.29:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.29:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.29:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.30:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.30:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.30:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.31:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.31:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.32:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.32:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.32:pre2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.33:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.33:pre1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.33.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.33.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.33.4:*:*:*:*:*:*:*
Package CPE Advisory Released Date
Red Hat Enterprise Linux 2.1
kernel-0:2.4.18-e.67 cpe:/o:redhat:enterprise_linux:2.1 RHSA-2008:0787 2009-01-05T00:00:00Z
kernel-0:2.4.9-e.74 cpe:/o:redhat:enterprise_linux:2.1 RHSA-2009:0001 2009-01-08T00:00:00Z
Red Hat Enterprise Linux 3
kernel-0:2.4.21-57.EL cpe:/o:redhat:enterprise_linux:3 RHSA-2008:0211 2008-05-07T00:00:00Z
Red Hat Enterprise Linux 4
kernel-0:2.6.9-42.0.8.EL cpe:/o:redhat:enterprise_linux:4 RHSA-2007:0014 2007-01-30T00:00:00Z
References
Link Providers
http://lists.vmware.com/pipermail/security-announce/2008/000023.html cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2007-0014.html cve-icon cve-icon
http://secunia.com/advisories/23436 cve-icon cve-icon
http://secunia.com/advisories/23609 cve-icon cve-icon
http://secunia.com/advisories/23997 cve-icon cve-icon
http://secunia.com/advisories/24098 cve-icon cve-icon
http://secunia.com/advisories/24100 cve-icon cve-icon
http://secunia.com/advisories/24206 cve-icon cve-icon
http://secunia.com/advisories/24482 cve-icon cve-icon
http://secunia.com/advisories/25691 cve-icon cve-icon
http://secunia.com/advisories/25714 cve-icon cve-icon
http://secunia.com/advisories/29058 cve-icon cve-icon
http://secunia.com/advisories/30110 cve-icon cve-icon
http://secunia.com/advisories/31246 cve-icon cve-icon
http://secunia.com/advisories/33280 cve-icon cve-icon
http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm cve-icon cve-icon
http://www.debian.org/security/2007/dsa-1304 cve-icon cve-icon
http://www.debian.org/security/2008/dsa-1503 cve-icon cve-icon
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.33.6 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:040 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:060 cve-icon cve-icon
http://www.novell.com/linux/security/advisories/2007_18_kernel.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2008-0211.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2008-0787.html cve-icon cve-icon
http://www.securityfocus.com/archive/1/471457 cve-icon cve-icon
http://www.securityfocus.com/bid/21663 cve-icon cve-icon
http://www.trustix.org/errata/2007/0002/ cve-icon cve-icon
http://www.ubuntu.com/usn/usn-416-1 cve-icon cve-icon
http://www.vupen.com/english/advisories/2006/5082 cve-icon cve-icon
http://www.vupen.com/english/advisories/2008/2222/references cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2006-4814 cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9648 cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2006-4814 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2006-12-20T02:00:00

Updated: 2024-08-07T19:23:41.172Z

Reserved: 2006-09-15T00:00:00

Link: CVE-2006-4814

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-12-20T02:28:00.000

Modified: 2024-11-21T00:16:49.043

Link: CVE-2006-4814

cve-icon Redhat

Severity : Moderate

Publid Date: 2006-12-14T00:00:00Z

Links: CVE-2006-4814 - Bugzilla