CVE-2006-5331
Severity CVSS v4.0:
Pending analysis
Type:
CWE-19
Data Handling
Publication date:
29/10/2017
Last modified:
20/04/2025
Description
The altivec_unavailable_exception function in arch/powerpc/kernel/traps.c in the Linux kernel before 2.6.19 on 64-bit systems mishandles the case where CONFIG_ALTIVEC is defined and the CPU actually supports Altivec, but the Altivec support was not detected by the kernel, which allows local users to cause a denial of service (panic) by triggering execution of an Altivec instruction.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Base Score 2.0
4.90
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.19 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6c4841c2b6c32a134f9f36e5e08857138cc12b10
- http://www.linuxgrill.com/anonymous/kernel/v2.6/ChangeLog-2.6.19
- https://bugzilla.suse.com/show_bug.cgi?id=213229
- https://github.com/torvalds/linux/commit/6c4841c2b6c32a134f9f36e5e08857138cc12b10
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6c4841c2b6c32a134f9f36e5e08857138cc12b10
- http://www.linuxgrill.com/anonymous/kernel/v2.6/ChangeLog-2.6.19
- https://bugzilla.suse.com/show_bug.cgi?id=213229
- https://github.com/torvalds/linux/commit/6c4841c2b6c32a134f9f36e5e08857138cc12b10