CVE-2006-5701
published 2006-11-03CVE-2006-5701: Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause…
PriorityP415medium4.9CVSS 2.0
AVLACLAuNCNINAC
EXPLOIT
EPSS
0.85%
53.6th percentile
Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem.
Affected
70 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.04.9MEDIUMAV:L/AC:L/Au:N/C:N/I:N/A:C
vendor_ubuntu7.5HIGH
vendor_redhat4.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2006-12-14·CVSS 7.5
CVE-2006-5619 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
Mark Dowd discovered that the netfilter iptables module did not
correcly handle fragmented packets. By sending specially crafted
packets, a remote attacker could exploit this to bypass firewall
rules. This has only be fixed for Ubuntu 6.10; the corresponding fix
for Ubuntu 5.10 and 6.06 will follow soon. (CVE-2006-4572)
Dmitriy Monakhov discovered an information leak in the
__block_prepare_write() function. During error recovery, this function
did not properly clear memory buffers which could allow local users to
read portions of unlinked files. This only affects Ubuntu 5.10.
(CVE-2006-4813)
ADLab Venustech Info Ltd discovered that the ATM network driver
referenced an already released pointer in some circumstance
Red Hat
CVE-2006-5701: Double free vulnerability in squashfs module in the Linux kernel 2
vendor_redhat·CVSS 4.9
CVE-2006-5701 [MEDIUM] CVE-2006-5701: Double free vulnerability in squashfs module in the Linux kernel 2
Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem.
Statement: Not Vulnerable. The squashfs module is not distributed as part of Red Hat Enterprise Linux 2.1, 3, or 4. Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
GHSA
GHSA-gvhq-rx59-r69c: Double free vulnerability in squashfs module in the Linux kernel 2
ghsa_unreviewed·2022-05-01
CVE-2006-5701 [MEDIUM] GHSA-gvhq-rx59-r69c: Double free vulnerability in squashfs module in the Linux kernel 2
Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem.
No detection rules found.
No writeups or analysis indexed.
http://projects.info-pull.com/mokb/MOKB-02-11-2006.htmlhttp://secunia.com/advisories/22655http://secunia.com/advisories/23361http://secunia.com/advisories/23384http://secunia.com/advisories/24259http://www.mandriva.com/security/advisories?name=MDKSA-2007:047http://www.securityfocus.com/bid/20870http://www.ubuntu.com/usn/usn-395-1https://exchange.xforce.ibmcloud.com/vulnerabilities/29967http://projects.info-pull.com/mokb/MOKB-02-11-2006.htmlhttp://secunia.com/advisories/22655http://secunia.com/advisories/23361http://secunia.com/advisories/23384http://secunia.com/advisories/24259http://www.mandriva.com/security/advisories?name=MDKSA-2007:047http://www.securityfocus.com/bid/20870http://www.ubuntu.com/usn/usn-395-1https://exchange.xforce.ibmcloud.com/vulnerabilities/29967
2006-11-03
Published