Back to search
CVE-2004-0077
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SSA:2004-049
vendor-advisory
x_refsource_SLACKWARE
DSA-450
vendor-advisory
x_refsource_DEBIAN
DSA-440
vendor-advisory
x_refsource_DEBIAN
RHSA-2004:069
vendor-advisory
x_refsource_REDHAT
O-082
third-party-advisory
government-resource
x_refsource_CIAC
FEDORA-2004-079
vendor-advisory
x_refsource_FEDORA
DSA-439
vendor-advisory
x_refsource_DEBIAN
DSA-475
vendor-advisory
x_refsource_DEBIAN
CLA-2004:820
vendor-advisory
x_refsource_CONECTIVA
RHSA-2004:106
vendor-advisory
x_refsource_REDHAT
SuSE-SA:2004:005
vendor-advisory
x_refsource_SUSE
DSA-442
vendor-advisory
x_refsource_DEBIAN
RHSA-2004:065
vendor-advisory
x_refsource_REDHAT
DSA-470
vendor-advisory
x_refsource_DEBIAN
MDKSA-2004:015
vendor-advisory
x_refsource_MANDRAKE
9686
vdb-entry
x_refsource_BID
DSA-438
vendor-advisory
x_refsource_DEBIAN
DSA-514
vendor-advisory
x_refsource_DEBIAN
http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt
x_refsource_MISC
DSA-456
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:837
vdb-entry
signature
x_refsource_OVAL
GLSA-200403-02
vendor-advisory
x_refsource_GENTOO
DSA-441
vendor-advisory
x_refsource_DEBIAN
20040218 Second critical mremap() bug found in all Linux kernels
mailing-list
x_refsource_VULNWATCH
DSA-454
vendor-advisory
x_refsource_DEBIAN
linux-mremap-gain-privileges(15244)
vdb-entry
x_refsource_XF
20040218 Second critical mremap() bug found in all Linux kernels
mailing-list
x_refsource_BUGTRAQ
DSA-444
vendor-advisory
x_refsource_DEBIAN
RHSA-2004:066
vendor-advisory
x_refsource_REDHAT
2004-0008
vendor-advisory
x_refsource_TRUSTIX
oval:org.mitre.oval:def:825
vdb-entry
signature
x_refsource_OVAL
DSA-453
vendor-advisory
x_refsource_DEBIAN
3986
vdb-entry
x_refsource_OSVDB
VU#981222
third-party-advisory
x_refsource_CERT-VN
DSA-466
vendor-advisory
x_refsource_DEBIAN
2004-0007
vendor-advisory
x_refsource_TRUSTIX
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now