CVE-2006-7229
published 2007-11-15CVE-2006-7229: The skge driver 1.5 in Linux kernel 2.6.15 on Ubuntu does not properly use the spin_lock and spin_unlock functions, which allows remote attackers to cause a…
PriorityP432high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
2.80%
84.7th percentile
The skge driver 1.5 in Linux kernel 2.6.15 on Ubuntu does not properly use the spin_lock and spin_unlock functions, which allows remote attackers to cause a denial of service (machine crash) via a flood of network traffic.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ubuntu | linux_kernel | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
vendor_ubuntu4.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-c96x-hvmf-4pcg: The skge driver 1
ghsa_unreviewed·2022-05-01
CVE-2006-7229 [HIGH] CWE-400 GHSA-c96x-hvmf-4pcg: The skge driver 1
The skge driver 1.5 in Linux kernel 2.6.15 on Ubuntu does not properly use the spin_lock and spin_unlock functions, which allows remote attackers to cause a denial of service (machine crash) via a flood of network traffic.
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2008-02-14·CVSS 4.0
CVE-2006-7229 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
The minix filesystem did not properly validate certain filesystem
values. If a local attacker could trick the system into attempting
to mount a corrupted minix filesystem, the kernel could be made to
hang for long periods of time, resulting in a denial of service.
(CVE-2006-6058)
Alexander Schulze discovered that the skge driver does not properly
use the spin_lock and spin_unlock functions. Remote attackers could
exploit this by sending a flood of network traffic and cause a denial
of service (crash). (CVE-2006-7229)
Hugh Dickins discovered that hugetlbfs performed certain prio_tree
calculations using HPAGE_SIZE instead of PAGE_SIZE. A local user
could exploit this and cause a denial of service via kernel panic.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/28971http://www.securityfocus.com/bid/26511http://www.ubuntu.com/usn/usn-578-1https://bugs.launchpad.net/ubuntu/+source/linux-source-2.6.15/+bug/65631http://secunia.com/advisories/28971http://www.securityfocus.com/bid/26511http://www.ubuntu.com/usn/usn-578-1https://bugs.launchpad.net/ubuntu/+source/linux-source-2.6.15/+bug/65631
2007-11-15
Published