CVE - CVE-2006-6106

CVE-ID
CVE-2006-6106	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via CAPI messages with a large value for the length of the (1) manu (manufacturer) or (2) serial (serial number) field.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20070209 rPSA-2007-0031-1 kernel URL:http://www.securityfocus.com/archive/1/459615/100/0/threaded BUGTRAQ:20070615 rPSA-2007-0124-1 kernel xen URL:http://www.securityfocus.com/archive/1/471457 MLIST:[linux-kernel] 20061215 [patch 24/24] Bluetooth: Add packet size checks for CAPI messages (CVE-2006-6106) URL:http://marc.info/?l=linux-kernel&m=116614741607528&w=2 MLIST:[linux-kernel] 20061219 Linux 2.6.18.6 URL:http://marc.info/?l=linux-kernel&m=116648929829440&w=2 MISC:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=218602 CONFIRM:http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.33.5 CONFIRM:https://issues.rpath.com/browse/RPL-848 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm DEBIAN:DSA-1304 URL:http://www.debian.org/security/2007/dsa-1304 DEBIAN:DSA-1503 URL:http://www.debian.org/security/2008/dsa-1503 MANDRIVA:MDKSA-2007:002 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:002 MANDRIVA:MDKSA-2007:012 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:012 MANDRIVA:MDKSA-2007:025 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:025 REDHAT:RHSA-2007:0014 URL:http://rhn.redhat.com/errata/RHSA-2007-0014.html SUSE:SUSE-SA:2007:018 URL:http://www.novell.com/linux/security/advisories/2007_18_kernel.html SUSE:SUSE-SA:2007:021 URL:http://www.novell.com/linux/security/advisories/2007_21_kernel.html SUSE:SUSE-SA:2007:030 URL:http://www.novell.com/linux/security/advisories/2007_30_kernel.html SUSE:SUSE-SA:2007:035 URL:http://www.novell.com/linux/security/advisories/2007_35_kernel.html SUSE:SUSE-SA:2007:053 URL:http://www.novell.com/linux/security/advisories/2007_53_kernel.html TRUSTIX:2007-0002 URL:http://www.trustix.org/errata/2007/0002/ UBUNTU:USN-416-1 URL:http://www.ubuntu.com/usn/usn-416-1 BID:21604 URL:http://www.securityfocus.com/bid/21604 OVAL:oval:org.mitre.oval:def:10891 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10891 VUPEN:ADV-2006-5037 URL:http://www.vupen.com/english/advisories/2006/5037 SECUNIA:23408 URL:http://secunia.com/advisories/23408 SECUNIA:23427 URL:http://secunia.com/advisories/23427 SECUNIA:23593 URL:http://secunia.com/advisories/23593 SECUNIA:23609 URL:http://secunia.com/advisories/23609 SECUNIA:23752 URL:http://secunia.com/advisories/23752 SECUNIA:23997 URL:http://secunia.com/advisories/23997 SECUNIA:24098 URL:http://secunia.com/advisories/24098 SECUNIA:24105 URL:http://secunia.com/advisories/24105 SECUNIA:24206 URL:http://secunia.com/advisories/24206 SECUNIA:24547 URL:http://secunia.com/advisories/24547 SECUNIA:25683 URL:http://secunia.com/advisories/25683 SECUNIA:25714 URL:http://secunia.com/advisories/25714 SECUNIA:25691 URL:http://secunia.com/advisories/25691 SECUNIA:25226 URL:http://secunia.com/advisories/25226 SECUNIA:27227 URL:http://secunia.com/advisories/27227 SECUNIA:29058 URL:http://secunia.com/advisories/29058 XF:kernel-cmtprecvinteropmsg-bo(30912) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/30912
Assigning CNA
N/A
Date Entry Created
20061124	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061124)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation. For more information, please contact us.