VYPR
Unrated severityNVD Advisory· Published Jul 5, 2006· Updated Jun 16, 2026

CVE-2006-2935

CVE-2006-2935

Description

The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:o:canonical:ubuntu_linux:5.04:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:canonical:ubuntu_linux:5.04:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:5.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • Linux/Kernel2 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=2.2.16,<=2.16.16
    • (no CPE)range: >=2.2.16

Patches

Vulnerability mechanics

References

40

News mentions

0

No linked articles in our index yet.