Lucene search
SuseSUSE-SA:2004:001HistoryJan 05, 2004 - 7:31 p.m.
local system compromise in Linux Kernel
2004-01-0519:31:04
lists.opensuse.org
20
EPSS
0
Percentile
9.7%
The do_mremap() function of the Linux Kernel is used to manage (move, resize) Virtual Memory Areas (VMAs). By exploiting an incorrect bounds check in do_mremap() during the remapping of memory it is possible to create a VMA with the size of 0. In normal operation do_mremap() leaves a memory hole of one page and creates an additional VMA of two pages. In case of exploitation no hole is created but the new VMA has a 0 bytes length. The Linux Kernel’s memory management is corrupted from this point and can be abused by local users to gain root privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 8.1 | i586 | k_athlon | < 2.4.21-168 | k_athlon-2.4.21-168.i586.rpm |
| openSUSE | 9.0 | i586 | k_um | < 2.4.21-166 | k_um-2.4.21-166.i586.rpm |
| openSUSE | 9.0 | x86_64 | kernel-source | < 2.4.21-171 | kernel-source-2.4.21-171.x86_64.rpm |
| openSUSE | 9.0 | i586 | k_smp4g | < 2.4.21-166 | k_smp4G-2.4.21-166.i586.rpm |
| openSUSE | 8.0 | i386 | k_i386 | < 2.4.18-282 | k_i386-2.4.18-282.i386.rpm |
| openSUSE | 8.1 | i586 | k_smp | < 2.4.21-168 | k_smp-2.4.21-168.i586.rpm |
| openSUSE | 8.1 | i586 | k_deflt | < 2.4.21-168 | k_deflt-2.4.21-168.i586.rpm |
| openSUSE | 9.0 | i586 | k_deflt | < 2.4.21-166 | k_deflt-2.4.21-166.i586.rpm |
| openSUSE | 8.0 | i386 | kernel-source | < 2.4.18.SuSE-282 | kernel-source-2.4.18.SuSE-282.i386.rpm |
| openSUSE | 8.0 | i386 | k_psmp | < 2.4.18-282 | k_psmp-2.4.18-282.i386.rpm |
Related
openvas
openvas
Slackware: Security Advisory (SSA:2004-006-01)
2012-09-10 00:00:00
ubuntucve
ubuntucve
CVE-2003-0985
2004-01-20 00:00:00
CVE-2004-0077
2004-03-03 00:00:00
nessus
nessus
RHEL 2.1 : kernel (RHSA-2003:419)
2004-07-06 00:00:00
Slackware 8.1 : Slackware 8.1 kernel security update (SSA:2004-008-01)
2005-07-13 00:00:00
Debian DSA-413-2 : linux-kernel-2.4.18 - missing boundary check
2004-09-29 00:00:00
slackware
slackware
Slackware 8.1 kernel security update
2004-01-08 20:04:57
Kernel security update
2004-01-06 20:00:02
Kernel security update
2004-02-18 04:37:55
exploitpack
exploitpack
Linux Kernel 2.2.252.4.242.6.2 - mremap() Validator
2004-02-18 00:00:00
osv
osv
linux-kernel-2.4.18 - missing boundary check
2004-01-06 00:00:00
linux-kernel-2.4.17-mips+mipsel - missing boundary check
2004-01-19 00:00:00
linux-kernel-2.4.18-powerpc+alpha - missing boundary check
2004-01-07 00:00:00
redhat
redhat
(RHSA-2003:419) kernel security update
2004-01-05 00:00:00
(RHSA-2003:416) kernel security update
2004-01-07 00:00:00
(RHSA-2003:418) kernel security update
2004-01-05 00:00:00
debian
debian
securityvulns
securityvulns
[Full-Disclosure] Linux kernel mremap vulnerability
2004-01-05 00:00:00
suse
suse
local system compromise in Linux Kernel (x86_64, AMD64)
2004-01-15 15:10:36
exploitdb
exploitdb
Linux Kernel 2.2.25/2.4.24/2.6.2 - 'mremap()' Validator
2004-02-18 00:00:00
cert
cert
nvd
nvd
cvelist
cvelist
CVE-2004-0077
2004-09-01 04:00:00
CVE-2003-0985
2004-09-01 04:00:00
cve
cve