Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 158791 (CVE-2006-6106) - Kernel: Multiple problems in net/bluetooth/cmtp/capi.c (CVE-2006-6106)
Summary: Kernel: Multiple problems in net/bluetooth/cmtp/capi.c (CVE-2006-6106)
Status: RESOLVED FIXED
Alias: CVE-2006-6106
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://git.kernel.org/?p=linux/kernel...
Whiteboard: [linux <2.6.16.38][linux >=2.6.17 <2....
Keywords:
: 157836 (view as bug list)
Depends on:
Blocks:
 
Reported: 2006-12-21 19:02 UTC by Daniel Drake (RETIRED)
Modified: 2013-09-15 18:44 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Daniel Drake (RETIRED) gentoo-dev 2006-12-21 19:02:50 UTC 
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to a boundary error within the handling of incoming CAPI messages in net/bluetooth/cmtp/capi.c. This can be exploited to overwrite certain Kernel data structures.
Comment 1 Daniel Drake (RETIRED) gentoo-dev 2006-12-23 08:00:41 UTC 
Fixed in:
 Linux 2.6.18.6
 genpatches-2.6.18-7
 gentoo-sources-2.6.18-r5
Comment 2 Daniel Drake (RETIRED) gentoo-dev 2007-01-01 15:16:17 UTC 
2.6.19 appears unfixed, patch is not even in 2.6.20-rc3
Comment 3 Daniel Drake (RETIRED) gentoo-dev 2007-01-01 18:02:58 UTC 
Contacted upstream
http://marc.theaimsgroup.com/?l=linux-kernel&m=116770122513417&w=2
Comment 4 Daniel Drake (RETIRED) gentoo-dev 2007-01-11 19:05:15 UTC 
More fixed versions:
Linux 2.6.19.2
genpatches-2.6.19-5
gentoo-sources-2.6.19-r4
Comment 5 unnamedrambler 2008-03-07 17:35:15 UTC 
proposed metadata w/ git ids:
[linux < 2.6.16.38] 044a3e96c42df125bbc046495d49a6b8f380aa5a
[linux > 2.6.16.38 < 2.6.18.6] 1dca7c280661c5741ac2eeb4b5386c1a566bf0b1
[linux > 2.6.18.6 < 2.6.19.2] d4ea7f9f5554d94dcb8a630f470c724d05e8f112
[gp < 2.6.18-7]
[gentoo < 2.6.18-r5]
[gp > 2.6.18-7 < 2.6.19-5]
[gentoo > 2.6.18-r5 < 2.6.19-r4]
Comment 6 unnamedrambler 2008-03-07 19:30:08 UTC 
metadata correction:
[linux > 2.6.16.38 < 2.6.18.6] should be [linux >= 2.6.17 < 2.6.18.6]
[linux > 2.6.18.6 < 2.6.19.2] should be [linux >= 2.6.19 < 2.6.19.2]

[gentoo < 2.6.18-r5]
[gp > 2.6.18-7 < 2.6.19-5] should be [gp >= 2.6.19-1 < 2.6.19-5]
[gentoo > 2.6.18-r5 < 2.6.19-r4] should be [gentoo >= 2.6.19 < 2.6.19-r4]
Comment 7 Bjoern Tropf (RETIRED) gentoo-dev 2009-07-13 19:02:01 UTC 
*** Bug 157836 has been marked as a duplicate of this bug. ***