CVE-2006-5757
Summary
| CVE | CVE-2006-5757 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-11-06 20:07:00 UTC |
| Updated | 2026-04-23 00:35:47 UTC |
| Description | Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (infinite loop) by mounting a crafted ISO9660 filesystem containing malformed data structures. |
Risk And Classification
Primary CVSS: v2.0 1.2 from [email protected]
AV:L/AC:H/Au:N/C:N/I:N/A:P
Problem Types: CWE-17 | CWE-399 | n/a
CVSS v2.0 Breakdown
Access Vector
LocalAccess Complexity
HighAuthentication
NoneConfidentiality
NoneIntegrity
NoneAvailability
PartialAV:L/AC:H/Au:N/C:N/I:N/A:P
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Linux | Linux Kernel | 2.6.0 | test1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test10 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test11 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test2 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test3 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test4 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test5 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test6 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test7 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test8 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.0 | test9 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.1 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.1 | rc2 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.10 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.10 | rc2 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11 | rc2 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11 | rc3 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11 | rc4 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.11 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.12 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.4 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.5 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.6 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.7 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.11.8 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12 | rc4 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12 | rc5 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12.2 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12.3 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12.4 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12.5 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.12.6 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13 | rc4 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13 | rc6 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13 | rc7 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13.2 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13.3 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.13.4 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14 | rc2 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14 | rc3 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14 | rc4 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14.2 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14.3 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14.4 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.14.5 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15 | rc3 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15.2 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15.3 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15.4 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.15.5 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.11 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.12 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.13 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.19 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.23 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.27 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.7 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.16.9 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17 | rc5 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.10 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.11 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.12 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.13 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.14 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.3 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.5 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.6 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.7 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.17.8 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.18 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.18.1 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.19 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.2 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.3 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.4 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.5 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.6 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.6 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.7 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.7 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.8 | All | All | All |
| Operating System | Linux | Linux Kernel | 2.6.8 | rc1 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.8 | rc2 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.8 | rc3 | All | All |
| Operating System | Linux | Linux Kernel | 2.6.9 | 2.6.20 | All | All |
| Operating System | Linux | Linux Kernel | 2.6_test9_cvs | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| usn/usn-416-1 - Ubuntu: Linux for human beings | af854a3a-2127-422b-91ae-364da2661108 | www.ubuntu.com | |
| rhn.redhat.com | Red Hat Support | af854a3a-2127-422b-91ae-364da2661108 | rhn.redhat.com | |
| Linux Kernel ISO9660 Local Denial of Service - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Patch, Vendor Advisory |
| Fedora Core ISO9660 Local Denial of Service - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Vendor Advisory |
| Debian -- Security Information -- DSA-1304-1 kernel-source-2.6.8 | af854a3a-2127-422b-91ae-364da2661108 | www.debian.org | |
| SUSE update for kernel - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Avaya Products Kernel Multiple Vulnerabilities - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Red Hat update for kernel - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | |
| Advisories - Mandriva Linux | af854a3a-2127-422b-91ae-364da2661108 | www.mandriva.com | |
| Advisories - Mandriva Linux | af854a3a-2127-422b-91ae-364da2661108 | www.mandriva.com | |
| Debian update for kernel-source-2.6.8 - Secunia Advisories - Vulnerability Intelligence - Secunia.com | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Mandriva update for kernel - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Mandriva update for kernel - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| SecurityFocus | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | |
| Ubuntu update for kernel - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| IBM X-Force Exchange | af854a3a-2127-422b-91ae-364da2661108 | exchange.xforce.ibmcloud.com | |
| ASA-2007-063 (RHSA-2007-0014) | af854a3a-2127-422b-91ae-364da2661108 | support.avaya.com | |
| Webmail - OVH | af854a3a-2127-422b-91ae-364da2661108 | www.vupen.com | |
| Month of Kernel Bugs (MoKB): Linux 2.6.x ISO9660 __find_get_block_slow() denial of service | af854a3a-2127-422b-91ae-364da2661108 | projects.info-pull.com | |
| rPath update for kernel and xen - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Linux Kernel ISO9660 Denial of Service Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | Exploit |
| Security Announcement | af854a3a-2127-422b-91ae-364da2661108 | www.novell.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
| Organization | Published | Contributor | Statement |
|---|---|---|---|
| Red Hat | 2007-03-14 | Mark J Cox | Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch. |
Legacy QID Mappings
- 591311 Bosch Rexroth PRA-ES8P2S Ethernet-Switch Multiple Vulnerabilities (BOSCH-SA-247053-BT)