Description
Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an HFS filesystem image.
Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise Linux 4 | |||
| kernel-0:2.6.9-42.0.8.EL | cpe:/o:redhat:enterprise_linux:4 | RHSA-2007:0014 | 2007-01-30T00:00:00Z |
No data available yet.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DSA |
DSA-1304-1 | New Linux kernel 2.6.8 packages fix several vulnerabilities |
 EUVD |
EUVD-2006-6039 | Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an HFS filesystem image. |
 Ubuntu USN |
USN-416-1 | Linux kernel vulnerabilities |
References
History
Fri, 11 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-07T20:12:31.454Z
Reserved: 2006-11-21T00:00:00.000Z
Link: CVE-2006-6056
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-11-22T01:07:00.000
Modified: 2026-04-23T00:35:47.467
Link: CVE-2006-6056
Redhat
OpenCVE Enrichment
No data.
Weaknesses