CVE-2004-0077 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2004-0077
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0077

Description: The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985.

CVE Status: Entry

References: XF http://xforce.iss.net/xforce/xfdb/15244 VULNWATCH http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0040.html TURBO TRUSTIX http://marc.theaimsgroup.com/?l=bugtraq&m=107712137732553&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=107755871932680&w=2 SUSE http://www.novell.com/linux/security/advisories/2004_05_linux_kernel.html SLACKWARE http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.404734 REDHAT http://www.redhat.com/support/errata/RHSA-2004-065.html http://www.redhat.com/support/errata/RHSA-2004-066.html http://www.redhat.com/support/errata/RHSA-2004-069.html http://www.redhat.com/support/errata/RHSA-2004-106.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:825 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:837 OSVDB 3986 MISC http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt MANDRAKE http://frontal2.mandriva.com/security/advisories?name=MDKSA-2004:015 GENTOO http://security.gentoo.org/glsa/glsa-200403-02.xml FULLDISC FEDORA http://fedoranews.org/updates/FEDORA-2004-079.shtml DEBIAN http://www.debian.org/security/2004/dsa-442 http://www.debian.org/security/2004/dsa-441 http://www.debian.org/security/2004/dsa-440 http://www.debian.org/security/2004/dsa-439 http://www.debian.org/security/2004/dsa-438 http://www.debian.org/security/2004/dsa-444 http://www.debian.org/security/2004/dsa-450 http://www.debian.org/security/2004/dsa-453 http://www.debian.org/security/2004/dsa-454 http://www.debian.org/security/2004/dsa-456 http://www.debian.org/security/2004/dsa-466 http://www.debian.org/security/2004/dsa-470 http://www.debian.org/security/2004/dsa-514 http://www.debian.org/security/2004/dsa-475 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000820 CIAC http://www.ciac.org/ciac/bulletins/o-082.shtml CERT-VN 981222 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=107711762014175&w=2 BID 9686

Return to the previous page.