CVE-2003-0985 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2003-0985
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0985

Description: The mremap system call (do_mremap) in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing a remapping of a virtual memory area (VMA) to create a zero length VMA, a different vulnerability than CAN-2004-0077.

CVE Status: Entry

References: XF http://xforce.iss.net/xforce/xfdb/14135 TRUSTIX http://marc.theaimsgroup.com/?l=bugtraq&m=107332754521495&w=2 SUSE http://www.novell.com/linux/security/advisories/2004_03_linux_kernel.html SGI SAID Secunia Advisory: SA10532 Secunia Advisory: SA20163 Secunia Advisory: SA20202 Secunia Advisory: SA20338 REDHAT http://www.redhat.com/support/errata/RHSA-2003-416.html http://www.redhat.com/support/errata/RHSA-2003-417.html http://www.redhat.com/support/errata/RHSA-2003-418.html http://www.redhat.com/support/errata/RHSA-2003-419.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:860 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:867 OSVDB 3315 MLIST MISC http://isec.pl/vulnerabilities/isec-0013-mremap.txt MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:001 IMMUNIX http://download.immunix.org/ImmunixOS/7.3/updates/IMNX-2004-73-001-01 ENGARDE http://www.linuxsecurity.com/advisories/engarde_advisory-3904.html DEBIAN http://www.debian.org/security/2004/dsa-450 http://www.debian.org/security/2004/dsa-423 http://www.debian.org/security/2006/dsa-1070 http://www.debian.org/security/2006/dsa-1067 http://www.debian.org/security/2006/dsa-1069 http://www.debian.org/security/2006/dsa-1082 http://www.debian.org/security/2004/dsa-413 http://www.debian.org/security/2004/dsa-417 http://www.debian.org/security/2004/dsa-427 http://www.debian.org/security/2004/dsa-439 http://www.debian.org/security/2004/dsa-440 http://www.debian.org/security/2004/dsa-442 http://www.debian.org/security/2004/dsa-470 http://www.debian.org/security/2004/dsa-475 CONFIRM http://klecker.debian.org/~joey/security/kernel/patches/patch.CAN-2005-0528.mremap http://svn.debian.org/wsvn/kernel/patch-tracking/CVE-2005-0528?op=file&rev=0&sc=0 http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.24 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000799 CIAC http://www.ciac.org/ciac/bulletins/o-045.shtml CERT-VN 490620 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=107394143105081&w=2 http://archives.neohapsis.com/archives/bugtraq/2004-01/0070.html http://marc.theaimsgroup.com/?l=bugtraq&m=107350348418373&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=107340814409017&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=107340358402129&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=107332782121916&w=2 BID 9356

Return to the previous page.