Linux Kernel "sys_perfmon()" and "clip_mkip()" Denial of Service Vulnerabilities

Advisory ID : FrSIRT/ADV-2006-3937
CVE ID : CVE-2006-3741 – CVE-2006-4997
Rated as : Moderate Risk
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-10-06

Technical Description

Two vulnerabilities have been identified in Linux Kernel, which could be exploited by attackers to cause a denial of service.

The first issue is due to an error in the “sys_perfmon()” [arch/ia64/kernel/perfmon.c] function that does not properly decrement the file descriptor reference count, which could be exploited by remote attackers to exhaust all available resources, creating a denial of service condition.

The second flaw is due to an error in the “clip_mkip()” [net/atm/clip.c] function that erroneously dereferences “skb->dev” after “clip_push()”, which could be exploited to panic a vulnerable system.

RELATED ARTICLESMORE FROM AUTHOR

Maintainer Confidential: Challenges and Opportunities One Year On

Bridging Design and Runtime Gaps: AsyncAPI in Event-Driven Architecture

Implementing OpenTelemetry Natively in an Event Broker

Innovation as a Catalyst in Telecommunications

Linux 6.8 Brings More Sound Hardware Support For Intel & AMD, Including The Steam Deck

RELATED ARTICLES MORE FROM AUTHOR