Oval Definition:oval:org.opensuse.security:def:20063626
Revision Date:2017-09-27Version:1
Title:CVE-2006-3626
Description:

Race condition in Linux kernel 2.6.17.4 and earlier allows local users to gain root privileges by using prctl with PR_SET_DUMPABLE in a way that causes /proc/self/environ to become setuid root.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2006-3626
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Open Enterprise Server
SUSE LINUX 10.0
SUSE LINUX 10.1
SUSE LINUX 9.3
SUSE Linux Enterprise Desktop 10 SP1 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP1 for x86
SUSE Linux Enterprise Server 10 SP1 for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP1 for IBM POWER
SUSE Linux Enterprise Server 10 SP1 for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP1 for IPF
SUSE Linux Enterprise Server 10 SP1 for x86
Product(s):
Definition Synopsis
  • sles10-sp1-online is installed
  • AND Package Information
  • device-mapper-32bit less than 1.02.13-6.9
  • OR device-mapper-64bit less than 1.02.13-6.9
  • OR device-mapper-x86 less than 1.02.13-6.9
  • OR device-mapper less than 1.02.13-6.9
  • OR gfxboot less than 3.2.38-0.6
  • OR kernel-bigsmp less than 2.6.16.46-0.12
  • OR kernel-debug less than 2.6.16.46-0.12
  • OR kernel-default less than 2.6.16.46-0.12
  • OR kernel-iseries64 less than 2.6.16.46-0.12
  • OR kernel-kdump less than 2.6.16.46-0.12
  • OR kernel-ppc64 less than 2.6.16.46-0.12
  • OR kernel-smp less than 2.6.16.46-0.12
  • OR kernel-source less than 2.6.16.46-0.12
  • OR kernel-syms less than 2.6.16.46-0.12
  • OR kernel-xen less than 2.6.16.46-0.12
  • OR kernel-xenpae less than 2.6.16.46-0.12
  • OR lkcdutils-netdump-server less than 7.0.1-22.23
  • OR lkcdutils less than 7.0.1-22.23
  • OR ltrace-32bit less than 0.4-31.9
  • OR ltrace-64bit less than 0.4-31.9
  • OR ltrace less than 0.4-31.9
  • OR rsync less than 2.6.8-36.8
  • OR sysstat less than 6.0.2-16.19
    • BACK