CVE-2006-6535 - Vulnerability Details - OpenCVE

The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.01435.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel
Redhat	Enterprise Linux

Configuration 1 [-]

cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 4
kernel-0:2.6.9-42.0.8.EL	cpe:/o:redhat:enterprise_linux:4	RHSA-2007:0014	2007-01-30T00:00:00Z

No data.

References

Link	Providers
http://linux.bkbits.net:8080/linux-2.6/gnupatch%404186e5bfgUOMBbA6xFaY0_z84kaURw
http://rhn.redhat.com/errata/RHSA-2007-0014.html
http://secunia.com/advisories/23997
http://secunia.com/advisories/24206
http://secunia.com/advisories/25683
http://secunia.com/advisories/25714
http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm
http://www.debian.org/security/2007/dsa-1304
http://www.novell.com/linux/security/advisories/2007_35_kernel.html
http://www.securityfocus.com/bid/22317
https://nvd.nist.gov/vuln/detail/CVE-2006-6535
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11679
https://www.cve.org/CVERecord?id=CVE-2006-6535

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-01-30T19:00:00.000Z

Updated: 2024-08-07T20:26:46.542Z

Reserved: 2006-12-13T00:00:00.000Z

Link: CVE-2006-6535

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-01-30T19:28:00.000

Modified: 2026-04-23T00:35:47.467

Link: CVE-2006-6535

Redhat

Severity : Moderate

Publid Date: 2006-12-14T00:00:00Z

Links: CVE-2006-6535 - Bugzilla

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-12-16T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and \"node lockups.\" NOTE: it is not clear whether this issue is exploitable."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "RHSA-2007:0014", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2007-0014.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm"}, {"name": "25683", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/25683"}, {"name": "24206", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/24206"}, {"name": "23997", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23997"}, {"name": "22317", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/22317"}, {"name": "DSA-1304", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2007/dsa-1304"}, {"name": "25714", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/25714"}, {"name": "oval:org.mitre.oval:def:11679", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11679"}, {"name": "SUSE-SA:2007:035", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2007_35_kernel.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://linux.bkbits.net:8080/linux-2.6/gnupatch%404186e5bfgUOMBbA6xFaY0_z84kaURw"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-6535", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and \"node lockups.\" NOTE: it is not clear whether this issue is exploitable."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "RHSA-2007:0014", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2007-0014.html"}, {"name": "http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm", "refsource": "CONFIRM", "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm"}, {"name": "25683", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/25683"}, {"name": "24206", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/24206"}, {"name": "23997", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23997"}, {"name": "22317", "refsource": "BID", "url": "http://www.securityfocus.com/bid/22317"}, {"name": "DSA-1304", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2007/dsa-1304"}, {"name": "25714", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/25714"}, {"name": "oval:org.mitre.oval:def:11679", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11679"}, {"name": "SUSE-SA:2007:035", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2007_35_kernel.html"}, {"name": "http://linux.bkbits.net:8080/linux-2.6/gnupatch@4186e5bfgUOMBbA6xFaY0_z84kaURw", "refsource": "CONFIRM", "url": "http://linux.bkbits.net:8080/linux-2.6/gnupatch@4186e5bfgUOMBbA6xFaY0_z84kaURw"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T20:26:46.542Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2007:0014", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2007-0014.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm"}, {"name": "25683", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/25683"}, {"name": "24206", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/24206"}, {"name": "23997", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/23997"}, {"name": "22317", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/22317"}, {"name": "DSA-1304", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2007/dsa-1304"}, {"name": "25714", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/25714"}, {"name": "oval:org.mitre.oval:def:11679", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11679"}, {"name": "SUSE-SA:2007:035", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://www.novell.com/linux/security/advisories/2007_35_kernel.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://linux.bkbits.net:8080/linux-2.6/gnupatch%404186e5bfgUOMBbA6xFaY0_z84kaURw"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-6535", "datePublished": "2007-01-30T19:00:00.000Z", "dateReserved": "2006-12-13T00:00:00.000Z", "dateUpdated": "2024-08-07T20:26:46.542Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "142BCD48-8387-4D0C-A052-44DD4144CBFF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and \"node lockups.\" NOTE: it is not clear whether this issue is exploitable."}, {"lang": "es", "value": "La funci\u00f3n dev_queue_xmit en el Kernel de Linux 2.6 puede fallar antes de la llamada a la funci\u00f3n local_bh_disable, lo cual podr\u00eda conducir a una corrupci\u00f3n de datos y \"carceles de nodo\". NOTA: \t\r\nno est\u00e1 claro si este asunto es explotable."}], "id": "CVE-2006-6535", "lastModified": "2026-04-23T00:35:47.467", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.4, "confidentialityImpact": "NONE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 9.2, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-01-30T19:28:00.000", "references": [{"source": "cve@mitre.org", "url": "http://linux.bkbits.net:8080/linux-2.6/gnupatch%404186e5bfgUOMBbA6xFaY0_z84kaURw"}, {"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2007-0014.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/23997"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/24206"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/25683"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/25714"}, {"source": "cve@mitre.org", "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2007/dsa-1304"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2007_35_kernel.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/22317"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11679"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://linux.bkbits.net:8080/linux-2.6/gnupatch%404186e5bfgUOMBbA6xFaY0_z84kaURw"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2007-0014.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/23997"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/24206"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/25683"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/25714"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2007/dsa-1304"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.novell.com/linux/security/advisories/2007_35_kernel.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/22317"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11679"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}