Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service (panic) via a large relative timeout value. NOTE: some of these details are obtained from third party information.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Linux_kernel | Linux | 2.6.23 (including) | 2.6.23 (including) |
| Linux_kernel | Linux | 2.6.23-rc1 (including) | 2.6.23-rc1 (including) |
| Linux_kernel | Linux | 2.6.23-rc2 (including) | 2.6.23-rc2 (including) |
| Linux_kernel | Linux | 2.6.23.1 (including) | 2.6.23.1 (including) |
| Linux_kernel | Linux | 2.6.23.2 (including) | 2.6.23.2 (including) |
| Linux_kernel | Linux | 2.6.23.3 (including) | 2.6.23.3 (including) |
| Linux_kernel | Linux | 2.6.23.4 (including) | 2.6.23.4 (including) |
| Linux_kernel | Linux | 2.6.23.5 (including) | 2.6.23.5 (including) |
| Linux_kernel | Linux | 2.6.23.6 (including) | 2.6.23.6 (including) |
| Linux_kernel | Linux | 2.6.23.7 (including) | 2.6.23.7 (including) |
| Linux_kernel | Linux | 2.6.23.9 (including) | 2.6.23.9 (including) |
| MRG for RHEL-5 | RedHat | kernel-rt-0:2.6.24.7-74.el5rt | * |
| Red Hat Enterprise Linux 5 | RedHat | kernel-0:2.6.18-128.4.1.el5 | * |
| Red Hat Enterprise Linux 5.2 Z Stream | RedHat | kernel-0:2.6.18-92.1.35.el5 | * |
| Red Hat Enterprise Linux 5.3.Z - Server Only | RedHat | kernel-0:2.6.18-128.4.1.el5 | * |
| Linux | Ubuntu | upstream | * |
| Linux-source-2.6.17 | Ubuntu | edgy | * |
| Linux-source-2.6.20 | Ubuntu | feisty | * |
| Linux-source-2.6.22 | Ubuntu | gutsy | * |