PublicDate: 2006-12-19 19:28:00 UTC
Candidate: CVE-2006-6106
References:
 https://ubuntu.com/security/notices/USN-416-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6106
Description:
 Multiple buffer overflows in the cmtp_recv_interopmsg function in the
 Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up
 to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers
 to cause a denial of service (crash) and possibly execute arbitrary code
 via CAPI messages with a large value for the length of the (1) manu
 (manufacturer) or (2) serial (serial number) field.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_linux-source-2.6.20: DNE
edgy_linux-source-2.6.20: DNE
feisty_linux-source-2.6.20: not-affected
devel_linux-source-2.6.20: DNE
dapper_linux-source-2.6.15: released (2.6.15-29.58)
edgy_linux-source-2.6.15: DNE
feisty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE
dapper_linux-source-2.6.17: DNE
edgy_linux-source-2.6.17: released (2.6.17.1-12.40)
feisty_linux-source-2.6.17: DNE
devel_linux-source-2.6.17: DNE
upstream_linux-source-2.6.15: needs-triage
upstream_linux-source-2.6.17: needs-triage
upstream_linux-source-2.6.20: needs-triage