CVE-2006-4814 : The mincore function in the Linux kernel before 2.4.33.6 does not properly lock

The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock.

Published 2006-12-20 02:28:00

Updated 2025-04-09 00:30:58

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2006-4814

Linux » Linux Kernel
Versions up to, including, (<=) 2.4.33.5
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0
cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.1
cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.2
cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test1
cpe:2.3:o:linux:linux_kernel:2.4.0:test1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.3
cpe:2.3:o:linux:linux_kernel:2.4.3:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.5
cpe:2.3:o:linux:linux_kernel:2.4.5:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.4
cpe:2.3:o:linux:linux_kernel:2.4.4:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.8
cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.9
cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.10
cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.7
cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.6
cpe:2.3:o:linux:linux_kernel:2.4.6:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.11
cpe:2.3:o:linux:linux_kernel:2.4.11:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 X86 Edition
cpe:2.3:o:linux:linux_kernel:2.4.18:*:x86:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.14
cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.15
cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.16
cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.17
cpe:2.3:o:linux:linux_kernel:2.4.17:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.12
cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.13
cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18
cpe:2.3:o:linux:linux_kernel:2.4.18:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.19:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19 Update Pre2
cpe:2.3:o:linux:linux_kernel:2.4.19:pre2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19 Update Pre5
cpe:2.3:o:linux:linux_kernel:2.4.19:pre5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19 Update Pre6
cpe:2.3:o:linux:linux_kernel:2.4.19:pre6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19 Update Pre3
cpe:2.3:o:linux:linux_kernel:2.4.19:pre3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19 Update Pre4
cpe:2.3:o:linux:linux_kernel:2.4.19:pre4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.19
cpe:2.3:o:linux:linux_kernel:2.4.19:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test8
cpe:2.3:o:linux:linux_kernel:2.4.0:test8:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test9
cpe:2.3:o:linux:linux_kernel:2.4.0:test9:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre5
cpe:2.3:o:linux:linux_kernel:2.4.18:pre5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre6
cpe:2.3:o:linux:linux_kernel:2.4.18:pre6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre7
cpe:2.3:o:linux:linux_kernel:2.4.18:pre7:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre8
cpe:2.3:o:linux:linux_kernel:2.4.18:pre8:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test11
cpe:2.3:o:linux:linux_kernel:2.4.0:test11:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test12
cpe:2.3:o:linux:linux_kernel:2.4.0:test12:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test2
cpe:2.3:o:linux:linux_kernel:2.4.0:test2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test3
cpe:2.3:o:linux:linux_kernel:2.4.0:test3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test10
cpe:2.3:o:linux:linux_kernel:2.4.0:test10:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test4
cpe:2.3:o:linux:linux_kernel:2.4.0:test4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test6
cpe:2.3:o:linux:linux_kernel:2.4.0:test6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre2
cpe:2.3:o:linux:linux_kernel:2.4.18:pre2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre4
cpe:2.3:o:linux:linux_kernel:2.4.18:pre4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test5
cpe:2.3:o:linux:linux_kernel:2.4.0:test5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.0 Update Test7
cpe:2.3:o:linux:linux_kernel:2.4.0:test7:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.18:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.18 Update Pre3
cpe:2.3:o:linux:linux_kernel:2.4.18:pre3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.20
cpe:2.3:o:linux:linux_kernel:2.4.20:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.21 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.21:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.21
cpe:2.3:o:linux:linux_kernel:2.4.21:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.21 Update Pre4
cpe:2.3:o:linux:linux_kernel:2.4.21:pre4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.21 Update Pre7
cpe:2.3:o:linux:linux_kernel:2.4.21:pre7:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.22
cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.23
cpe:2.3:o:linux:linux_kernel:2.4.23:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.23 Update Pre9
cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.23 Ow2
cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.24
cpe:2.3:o:linux:linux_kernel:2.4.24:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.24 Ow1
cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.25
cpe:2.3:o:linux:linux_kernel:2.4.25:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.26
cpe:2.3:o:linux:linux_kernel:2.4.26:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.27 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.27:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.27 Update Pre2
cpe:2.3:o:linux:linux_kernel:2.4.27:pre2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.27 Update Pre3
cpe:2.3:o:linux:linux_kernel:2.4.27:pre3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.27 Update Pre4
cpe:2.3:o:linux:linux_kernel:2.4.27:pre4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.27 Update Pre5
cpe:2.3:o:linux:linux_kernel:2.4.27:pre5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.27
cpe:2.3:o:linux:linux_kernel:2.4.27:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.28
cpe:2.3:o:linux:linux_kernel:2.4.28:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.29 Update RC2
cpe:2.3:o:linux:linux_kernel:2.4.29:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.29 Update RC1
cpe:2.3:o:linux:linux_kernel:2.4.29:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.29
cpe:2.3:o:linux:linux_kernel:2.4.29:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.30
cpe:2.3:o:linux:linux_kernel:2.4.30:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.30 Update RC2
cpe:2.3:o:linux:linux_kernel:2.4.30:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.30 Update RC3
cpe:2.3:o:linux:linux_kernel:2.4.30:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.31 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.31:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.33.3
cpe:2.3:o:linux:linux_kernel:2.4.33.3:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.33.4
cpe:2.3:o:linux:linux_kernel:2.4.33.4:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.33 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.33:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.31
cpe:2.3:o:linux:linux_kernel:2.4.31:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.32
cpe:2.3:o:linux:linux_kernel:2.4.32:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.32 Update Pre2
cpe:2.3:o:linux:linux_kernel:2.4.32:pre2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.33.2
cpe:2.3:o:linux:linux_kernel:2.4.33.2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.32 Update Pre1
cpe:2.3:o:linux:linux_kernel:2.4.32:pre1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.33
cpe:2.3:o:linux:linux_kernel:2.4.33:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2006-4814

Top countries where our scanners detected CVE-2006-4814

Top open port discovered on systems with this issue 49152

IPs affected by CVE-2006-4814 6,830

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2006-4814!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2006-4814

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 22 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-4814

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.6	MEDIUM	AV:L/AC:L/Au:S/C:N/I:N/A:C	3.1	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: Single Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

CWE ids for CVE-2006-4814

CWE-399

Assigned by: nvd@nist.gov (Primary)

Vendor statements for CVE-2006-4814

Red Hat 2007-03-14

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

References for CVE-2006-4814

http://lists.vmware.com/pipermail/security-announce/2008/000023.html

502 Bad Gateway

CVEs referencing this url
http://www.vupen.com/english/advisories/2006/5082

Vendor Advisory
http://secunia.com/advisories/24206

Vendor Advisory

CVEs referencing this url
http://secunia.com/advisories/25691

About Secunia Research | Flexera
Vendor Advisory

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDKSA-2007:040

CVEs referencing this url
http://secunia.com/advisories/23997

Vendor Advisory

CVEs referencing this url
http://secunia.com/advisories/25714

Vendor Advisory

CVEs referencing this url
http://www.debian.org/security/2007/dsa-1304

Patch

CVEs referencing this url
http://secunia.com/advisories/24482

Vendor Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2007-0014.html

CVEs referencing this url
http://secunia.com/advisories/30110

About Secunia Research | Flexera
Vendor Advisory

CVEs referencing this url
http://www.redhat.com/support/errata/RHSA-2008-0211.html

Support

CVEs referencing this url
http://secunia.com/advisories/23609

Vendor Advisory

CVEs referencing this url
http://www.novell.com/linux/security/advisories/2007_18_kernel.html

CVEs referencing this url
http://secunia.com/advisories/24098

Vendor Advisory

CVEs referencing this url
http://www.debian.org/security/2008/dsa-1503

Patch

CVEs referencing this url
http://secunia.com/advisories/29058

Vendor Advisory

CVEs referencing this url
http://secunia.com/advisories/23436

Vendor Advisory
http://www.securityfocus.com/bid/21663

Patch
http://secunia.com/advisories/24100

Vendor Advisory

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDKSA-2007:060

CVEs referencing this url
http://www.trustix.org/errata/2007/0002/

CVEs referencing this url
http://www.ubuntu.com/usn/usn-416-1

CVEs referencing this url
http://secunia.com/advisories/31246

About Secunia Research | Flexera
Vendor Advisory

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9648
http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm

CVEs referencing this url
http://www.redhat.com/support/errata/RHSA-2008-0787.html

CVEs referencing this url
http://www.vupen.com/english/advisories/2008/2222/references

Site en construction
Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/archive/1/471457

CVEs referencing this url
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.33.6
http://secunia.com/advisories/33280

Vendor Advisory

CVEs referencing this url

Jump to