CVE-2006-4997

HIGH

Linux kernel - DoS

Title source: llm

Description

The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).

References (38)

[Exploit, Issue Tracking] http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=206265

[Broken Link, Vendor Advisory] http://secunia.com/advisories/22253

[Broken Link, Patch, Vendor Advisory] http://secunia.com/advisories/22279

[Broken Link, Patch, Vendor Advisory] http://secunia.com/advisories/22292

[Broken Link] http://secunia.com/advisories/22497

[Broken Link] http://secunia.com/advisories/22762

[Broken Link] http://secunia.com/advisories/22945

[Broken Link] http://secunia.com/advisories/23064

[Broken Link] http://secunia.com/advisories/23370

[Broken Link] http://secunia.com/advisories/23384

[Broken Link] http://secunia.com/advisories/23395

[Broken Link] http://secunia.com/advisories/23474

[Broken Link] http://secunia.com/advisories/23752

[Broken Link] http://secunia.com/advisories/23788

[Broken Link] http://secunia.com/advisories/24288

[Broken Link] http://secunia.com/advisories/25691

[Broken Link, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1017526

[Third Party Advisory] http://support.avaya.com/elmodocs2/security/ASA-2006-249.htm

[Third Party Advisory] http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm

[Third Party Advisory] http://support.avaya.com/elmodocs2/security/ASA-2007-078.htm

... and 18 more

Scores

CVSS v3 7.5

EPSS 0.3502

EPSS Percentile 97.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-416

Status draft

Affected Products (7)

linux/linux_kernel < 2.6.18

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

redhat/enterprise_linux

redhat/enterprise_linux

redhat/enterprise_linux

Timeline

Published Oct 10, 2006

Tracked Since Feb 18, 2026