PublicDate: 2006-05-19 22:02:00 UTC
Candidate: CVE-2006-0039
References:
 https://ubuntu.com/security/notices/USN-311-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0039
Description:
 Race condition in the do_add_counters function in netfilter for Linux
 kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read
 kernel memory by triggering the race condition in a way that produces a
 size value that is inconsistent with allocated memory, which leads to a
 buffer over-read in IPT_ENTRY_ITERATE.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_linux-source-2.6.15: released (2.6.15-29.58)
edgy_linux-source-2.6.15: DNE
feisty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE
dapper_linux-source-2.6.17: DNE
edgy_linux-source-2.6.17: released (2.6.17.1-12.40)
feisty_linux-source-2.6.17: DNE
devel_linux-source-2.6.17: DNE
upstream_linux-source-2.6.15: needs-triage
upstream_linux-source-2.6.17: needs-triage