Candidate: CVE-2006-1528 
References: 
 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168791 
 http://linux.bkbits.net:8080/linux-2.6/cset@43220081yu9ClBQNuqSSnW_9amW7iQ 
 http://marc.theaimsgroup.com/?l=linux-scsi&m=112540053711489&w=2
Description:
 Linux kernel before 2.6.13 allows local users to cause a denial of service (crash) via
 a dio transfer from the sg driver to memory mapped (mmap) IO space. 
Notes: 
Bugs: 
upstream: released (2.6.13), released (2.4.33.1) 
linux-2.6: released (2.6.13-1)
2.6.8-sarge-security: released (2.6.8-16sarge5) [sg-no-mmap-VM_IO.dpatch]
2.4.27-sarge-security: released (2.4.27-10sarge4) [225_sg-no-mmap-VM_IO.diff]