The mq_open system call in Linux kernel 2.6.9, in certain situations, can decrement a counter twice ("double decrement") as a result of multiple calls to the mntput function when the dentry_open function call fails, which allows local users to cause a denial of service (panic) via unspecified attack vectors.
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169130
http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html
http://rhn.redhat.com/errata/RHSA-2006-0101.html
http://secunia.com/advisories/18510
http://secunia.com/advisories/18527
http://secunia.com/advisories/18788
http://secunia.com/advisories/19038
http://secunia.com/advisories/19374
http://www.debian.org/security/2006/dsa-1017
http://www.mandriva.com/security/advisories?name=MDKSA-2006:040
http://www.novell.com/linux/security/advisories/2006_06_kernel.html
http://www.securityfocus.com/archive/1/427980/100/0/threaded
http://www.securityfocus.com/archive/1/427981/100/0/threaded
http://www.securityfocus.com/bid/16283
https://exchange.xforce.ibmcloud.com/vulnerabilities/25302
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10731
Source: MITRE
Published: 2005-12-31
Updated: 2018-10-19
Type: NVD-CWE-Other
Base Score: 2.1
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 3.9
Severity: LOW
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
22559 | Debian DSA-1017-1 : kernel-source-2.6.8 - several vulnerabilities | Nessus | Debian Local Security Checks | critical |
21977 | CentOS 4 : kernel (CESA-2006:0101) | Nessus | CentOS Local Security Checks | high |
20939 | Mandrake Linux Security Advisory : kernel (MDKSA-2006:040) | Nessus | Mandriva Local Security Checks | medium |
20791 | Ubuntu 4.10 / 5.04 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-244-1) | Nessus | Ubuntu Local Security Checks | high |
20732 | RHEL 4 : kernel (RHSA-2006:0101) | Nessus | Red Hat Local Security Checks | high |
801413 | CentOS RHSA-2006-0101 Security Check | Log Correlation Engine | Generic | high |