CVE-2006-0039

Impact:
Low
Public Date:
2006-05-16
Bugzilla:
1617869: CVE-2006-0039 security flaw

The MITRE CVE dictionary describes this issue as:

Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent with allocated memory, which leads to a buffer over-read in IPT_ENTRY_ITERATE.

Find out more about CVE-2006-0039 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (kernel) RHSA-2006:0689 2006-10-05

Acknowledgements

Red Hat would like to thank Solar Designer for reporting this issue.
Last Modified

CVE description copyright © 2017, The MITRE Corporation