Vulnerability Name:

CVE-2006-2451 (CCN-27628)

Assigned:2006-07-06
Published:2006-07-06
Updated:2018-10-18
Summary:The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump file to be created in a directory for which the user does not have permissions.
CVSS v3 Severity:4.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.8 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.3 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:P/A:P)
3.5 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:P/A:P/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-399
Vulnerability Consequences:Gain Privileges
References:Source: MISC
Type: UNKNOWN
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195902

Source: MITRE
Type: CNA
CVE-2006-2451

Source: CCN
Type: RHSA-2006-0574
kernel security update

Source: CCN
Type: SA20953
Linux Kernel "prctl" Privilege Escalation Vulnerability

Source: SECUNIA
Type: Vendor Advisory
20953

Source: SECUNIA
Type: Vendor Advisory
20960

Source: SECUNIA
Type: Vendor Advisory
20965

Source: SECUNIA
Type: Vendor Advisory
20986

Source: SECUNIA
Type: Vendor Advisory
20991

Source: SECUNIA
Type: Vendor Advisory
21179

Source: SECUNIA
Type: Vendor Advisory
21498

Source: CCN
Type: SA21966
Avaya Modular Messaging Linux Kernel "prctl" Privilege Escalation

Source: SECUNIA
Type: Vendor Advisory
21966

Source: CCN
Type: SECTRACK ID: 1016451
Linux Kernel Core Dump Handling May Let Local Users Deny Service or Gain Elevated Privileges

Source: SECTRACK
Type: UNKNOWN
1016451

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2006-162.htm

Source: CCN
Type: ASA-2006-162
kernel security update (RHSA-2006-0574)

Source: CCN
Type: The Linux Kernel Archives
latest stable version of the Linux kernel

Source: CONFIRM
Type: UNKNOWN
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git;a=commit;h=0af184bb9f80edfbb94de46cb52e9592e5a547b0

Source: CONFIRM
Type: UNKNOWN
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.24

Source: CONFIRM
Type: UNKNOWN
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.17.4

Source: SUSE
Type: UNKNOWN
SUSE-SR:2006:016

Source: SUSE
Type: UNKNOWN
SUSE-SR:2006:017

Source: SUSE
Type: UNKNOWN
SUSE-SA:2006:042

Source: SUSE
Type: UNKNOWN
SUSE-SA:2006:047

Source: SUSE
Type: UNKNOWN
SUSE-SA:2006:049

Source: OSVDB
Type: UNKNOWN
27030

Source: CCN
Type: OSVDB ID: 27030
Linux Kernel prctl Core Dumpe Handling Local Privilege Escalation

Source: REDHAT
Type: UNKNOWN
RHSA-2006:0574

Source: BUGTRAQ
Type: UNKNOWN
20060707 rPSA-2006-0122-1 kernel

Source: BUGTRAQ
Type: UNKNOWN
20060710 Re: rPSA-2006-0122-1 kernel

Source: BUGTRAQ
Type: UNKNOWN
20060712 Linux Kernel 2.6.x PRCTL Core Dump Handling - Local r00t Exploit ( BID 18874 / CVE-2006-2451 )

Source: BUGTRAQ
Type: UNKNOWN
20060714 Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround

Source: BUGTRAQ
Type: UNKNOWN
20060713 Re: [Full-disclosure] Re: Linux Kernel 2.6.x PRCTL Core Dump Handling - Local r00t Exploit ( BID 18874 / CVE-2006-2451 )

Source: BUGTRAQ
Type: UNKNOWN
20060713 Linux sys_prctl LKM based hotfix

Source: BUGTRAQ
Type: UNKNOWN
20060716 Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround

Source: BID
Type: UNKNOWN
18874

Source: CCN
Type: BID-18874
Linux Kernel PRCTL Core Dump Handling Privilege Escalation Vulnerability

Source: CCN
Type: USN-311-1
Linux kernel vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-311-1

Source: VUPEN
Type: Vendor Advisory
ADV-2006-2699

Source: XF
Type: UNKNOWN
linux-coredump-privilege-escalation(27628)

Source: CONFIRM
Type: UNKNOWN
https://issues.rpath.com/browse/RPL-488

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11336

Source: SUSE
Type: SUSE-SA:2006:042
kernel local privilege escalation

Source: SUSE
Type: SUSE-SA:2006:047
kernel security problems

Source: SUSE
Type: SUSE-SA:2006:049
kernel security problems

Source: SUSE
Type: SUSE-SR:2006:016
SUSE Security Summary Report

Source: SUSE
Type: SUSE-SR:2006:017
SUSE Security Summary Report

Source: CCN
Type: IBM Systems Support Web site
Support for HMC

Vulnerable Configuration:Configuration 1:
  • cpe:/o:linux:linux_kernel:2.6.13:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.6:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.7:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc7:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.6:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.7:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.24:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc7:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.15:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc7:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*
  • AND
  • cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:6.06:*:lts:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:10.1:*:personal:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20062451
    V
    		CVE-2006-2451
    2015-11-16
    oval:org.mitre.oval:def:11336
    V
    		The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump file to be created in a directory for which the user does not have permissions.
    2013-04-29
    oval:com.redhat.rhsa:def:20060574
    P
    		RHSA-2006:0574: kernel security update (Important)
    2006-07-07
    BACK
    linux linux kernel 2.6.13
    linux linux kernel 2.6.13.1
    linux linux kernel 2.6.13.2
    linux linux kernel 2.6.13.3
    linux linux kernel 2.6.13.4
    linux linux kernel 2.6.13.5
    linux linux kernel 2.6.14
    linux linux kernel 2.6.14 rc1
    linux linux kernel 2.6.14 rc2
    linux linux kernel 2.6.14 rc3
    linux linux kernel 2.6.14 rc4
    linux linux kernel 2.6.14 rc5
    linux linux kernel 2.6.14.1
    linux linux kernel 2.6.14.2
    linux linux kernel 2.6.14.3
    linux linux kernel 2.6.14.4
    linux linux kernel 2.6.14.5
    linux linux kernel 2.6.14.6
    linux linux kernel 2.6.14.7
    linux linux kernel 2.6.15
    linux linux kernel 2.6.15 rc1
    linux linux kernel 2.6.15 rc2
    linux linux kernel 2.6.15 rc3
    linux linux kernel 2.6.15 rc4
    linux linux kernel 2.6.15 rc5
    linux linux kernel 2.6.15 rc6
    linux linux kernel 2.6.15 rc7
    linux linux kernel 2.6.15.1
    linux linux kernel 2.6.15.2
    linux linux kernel 2.6.15.3
    linux linux kernel 2.6.15.4
    linux linux kernel 2.6.15.5
    linux linux kernel 2.6.15.6
    linux linux kernel 2.6.15.7
    linux linux kernel 2.6.16
    linux linux kernel 2.6.16 rc1
    linux linux kernel 2.6.16 rc2
    linux linux kernel 2.6.16 rc3
    linux linux kernel 2.6.16 rc4
    linux linux kernel 2.6.16 rc5
    linux linux kernel 2.6.16 rc6
    linux linux kernel 2.6.16.1
    linux linux kernel 2.6.16.2
    linux linux kernel 2.6.16.3
    linux linux kernel 2.6.16.4
    linux linux kernel 2.6.16.5
    linux linux kernel 2.6.16.6
    linux linux kernel 2.6.16.7
    linux linux kernel 2.6.16.8
    linux linux kernel 2.6.16.9
    linux linux kernel 2.6.16.10
    linux linux kernel 2.6.16.11
    linux linux kernel 2.6.16.12
    linux linux kernel 2.6.16.13
    linux linux kernel 2.6.16.14
    linux linux kernel 2.6.16.15
    linux linux kernel 2.6.16.16
    linux linux kernel 2.6.16.17
    linux linux kernel 2.6.16.18
    linux linux kernel 2.6.16.19
    linux linux kernel 2.6.16.20
    linux linux kernel 2.6.16.21
    linux linux kernel 2.6.16.22
    linux linux kernel 2.6.16.23
    linux linux kernel 2.6.17
    linux linux kernel 2.6.17 rc1
    linux linux kernel 2.6.17 rc2
    linux linux kernel 2.6.17 rc3
    linux linux kernel 2.6.17 rc4
    linux linux kernel 2.6.17 rc5
    linux linux kernel 2.6.17 rc6
    linux linux kernel 2.6.17.1
    linux linux kernel 2.6.17.2
    linux linux kernel 2.6.17.3
    linux linux kernel 2.6.14.4
    linux linux kernel 2.6.14.3
    linux linux kernel 2.6.15.1
    linux linux kernel 2.6.16.1
    linux linux kernel 2.6.17 rc1
    linux linux kernel 2.6.16
    linux linux kernel 2.6.16.11
    linux linux kernel 2.6.15
    linux linux kernel 2.6.14
    linux linux kernel 2.6.17
    linux linux kernel 2.6.17 rc6
    linux linux kernel 2.6.17 rc5
    linux linux kernel 2.6.17 rc4
    linux linux kernel 2.6.17 rc3
    linux linux kernel 2.6.17 rc2
    linux linux kernel 2.6.17.4
    linux linux kernel 2.6.17.3
    linux linux kernel 2.6.17.2
    linux linux kernel 2.6.17.1
    linux linux kernel 2.6.16 rc6
    linux linux kernel 2.6.16 rc5
    linux linux kernel 2.6.16 rc4
    linux linux kernel 2.6.16 rc3
    linux linux kernel 2.6.16 rc2
    linux linux kernel 2.6.16 rc1
    linux linux kernel 2.6.16.9
    linux linux kernel 2.6.16.8
    linux linux kernel 2.6.16.7
    linux linux kernel 2.6.16.6
    linux linux kernel 2.6.16.5
    linux linux kernel 2.6.16.4
    linux linux kernel 2.6.16.3
    linux linux kernel 2.6.16.24
    linux linux kernel 2.6.16.23
    linux linux kernel 2.6.16.22
    linux linux kernel 2.6.16.21
    linux linux kernel 2.6.16.20
    linux linux kernel 2.6.16.2
    linux linux kernel 2.6.16.19
    linux linux kernel 2.6.16.18
    linux linux kernel 2.6.16.17
    linux linux kernel 2.6.16.16
    linux linux kernel 2.6.16.15
    linux linux kernel 2.6.16.14
    linux linux kernel 2.6.16.13
    linux linux kernel 2.6.16.12
    linux linux kernel 2.6.16.10
    linux linux kernel 2.6.15 rc7
    linux linux kernel 2.6.15 rc6
    linux linux kernel 2.6.15 rc5
    linux linux kernel 2.6.15 rc4
    linux linux kernel 2.6.15 rc3
    linux linux kernel 2.6.14 rc2
    linux linux kernel 2.6.15 rc1
    linux linux kernel 2.6.15.5
    linux linux kernel 2.6.15.4
    linux linux kernel 2.6.15.3
    linux linux kernel 2.6.15.2
    linux linux kernel 2.6.15 rc2
    linux linux kernel 2.6.14 rc5
    linux linux kernel 2.6.14 rc4
    linux linux kernel 2.6.14 rc3
    linux linux kernel 2.6.14 rc1
    linux linux kernel 2.6.14.5
    linux linux kernel 2.6.14.2
    linux linux kernel 2.6.14.1
    linux linux kernel 2.6.13 rc7
    linux linux kernel 2.6.13 rc6
    linux linux kernel 2.6.13 rc5
    linux linux kernel 2.6.13 rc4
    linux linux kernel 2.6.13 rc3
    linux linux kernel 2.6.13 rc2
    linux linux kernel 2.6.13 rc1
    linux linux kernel 2.6.13
    linux linux kernel 2.6.13.1
    linux linux kernel 2.6.13.2
    linux linux kernel 2.6.13.3
    linux linux kernel 2.6.13.4
    suse linux enterprise server 8
    suse suse linux 9.1
    redhat enterprise linux 4
    redhat enterprise linux 4
    novell linux desktop 9
    redhat enterprise linux 4
    redhat enterprise linux 4
    novell open enterprise server *
    canonical ubuntu 6.06
    suse suse linux 10.1
    novell open enterprise server *