CVE-2007-0006

Linux Kernel < 2.6.20 - Denial of Service

Title source: rule

Description

The key serial number collision avoidance code in the key_alloc_serial function in Linux kernel 2.6.9 up to 2.6.20 allows local users to cause a denial of service (crash) via vectors that trigger a null dereference, as originally reported as "spinlock CPU recursion."

References (20)

Scores

EPSS 0.0009
EPSS Percentile 25.1%

Classification

Status draft

Affected Products (2)

linux/linux_kernel < 2.6.20
linux/linux_kernel

Timeline

Published Feb 06, 2007
Tracked Since Feb 18, 2026