Linux » Linux Kernel » 2.6.18 : Security Vulnerabilities, CVEs, Published In 2006 (Denial of service)
The ReiserFS functionality in Linux kernel 2.6.18, and possibly other versions, allows local users to cause a denial of service via a malformed ReiserFS file system that triggers memory corruption when a sync is performed.
Max CVSS
2.1
EPSS Score
0.04%
Published
2006-11-27
Updated
2017-07-29
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via CAPI messages with a large value for the length of the (1) manu (manufacturer) or (2) serial (serial number) field.
Max CVSS
7.5
EPSS Score
14.13%
Published
2006-12-19
Updated
2018-10-17
The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18, and possibly other versions, allows local users to cause a denial of service (CPU consumption) via a malformed NTFS file stream that triggers an infinite loop in the __find_get_block_slow function.
Max CVSS
4.9
EPSS Score
0.06%
Published
2006-11-22
Updated
2017-07-20
The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loop in the minix_bmap function. NOTE: this issue might be due to an integer overflow or signedness error.
Max CVSS
4.0
EPSS Score
0.18%
Published
2006-11-22
Updated
2018-10-30
The Linux kernel 2.6.x up to 2.6.18, and possibly other versions, on Fedora Core 6 and possibly other operating systems, allows local users to cause a denial of service (crash) via a malformed gfs2 file stream that triggers a NULL pointer dereference in the init_journal function.
Max CVSS
4.9
EPSS Score
0.06%
Published
2006-11-22
Updated
2017-07-20
Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an HFS filesystem image.
Max CVSS
4.9
EPSS Score
0.25%
Published
2006-11-22
Updated
2017-10-11
The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext2 stream with malformed data structures that triggers an error in the ext2_check_page due to a length that is smaller than the minimum.
Max CVSS
4.0
EPSS Score
0.18%
Published
2006-11-22
Updated
2017-10-11
The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream with malformed data structures.
Max CVSS
4.9
EPSS Score
0.19%
Published
2006-11-22
Updated
2017-10-11
The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed filesystem that uses zlib compression that triggers memory corruption, as demonstrated using cramfs.
Max CVSS
4.0
EPSS Score
0.13%
Published
2006-11-09
Updated
2018-10-30
Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (infinite loop) by mounting a crafted ISO9660 filesystem containing malformed data structures.
Max CVSS
1.2
EPSS Score
0.07%
Published
2006-11-06
Updated
2017-10-11
Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem.
Max CVSS
4.9
EPSS Score
0.04%
Published
2006-11-03
Updated
2017-07-20
The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18-stable allows local users to cause a denial of service (hang or oops) via unspecified manipulations that trigger an infinite loop while searching for flowlabels.
Max CVSS
2.1
EPSS Score
0.06%
Published
2006-10-31
Updated
2018-10-17
Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which allows local users to cause a denial of service (process crash), as demonstrated using a process that sets the Alignment Check flag (EFLAGS 0x40000), which triggers a SIGBUS in other processes that have an unaligned access.
Max CVSS
2.1
EPSS Score
0.04%
Published
2006-10-17
Updated
2020-08-19
13 vulnerabilities found