CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
9.7%
The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25,
2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value
from the do_munmap function when the maximum number of VMA descriptors is
exceeded, which allows local users to gain root privileges, a different
vulnerability than CAN-2003-0985.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | kernel-patch-powerpc-2.4.27 | < 2.4.27-11 | UNKNOWN |
ubuntu | 6.10 | noarch | kernel-patch-powerpc-2.4.27 | < 2.4.27-11 | UNKNOWN |
ubuntu | 6.06 | noarch | kernel-source-2.4.27 | < 2.4.27-12 | UNKNOWN |
ubuntu | 6.10 | noarch | kernel-source-2.4.27 | < 2.4.27-12 | UNKNOWN |