Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-444
HistoryFeb 20, 2004 - 12:00 a.m.

linux-kernel-2.4.17-ia64 - missing function return value check

2004-02-2000:00:00
Google
osv.dev
11

0.0004 Low

EPSS

Percentile

0.4%

JSON

Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical
security vulnerability in the memory management code of Linux inside
the mremap(2) system call. Due to missing function return value check
of internal functions a local attacker can gain root privileges.

For the stable distribution (woody) this problem has been fixed in
version 011226.16 of ia64 kernel source and images.

Other architectures are or will be mentioned in a separate advisory
respectively or are not affected (m68k).

For the unstable distribution (sid) this problem will be fixed in version
2.4.24-3.

This problem is also fixed in the upstream version of Linux 2.4.25 and
2.6.3.

We recommend that you upgrade your Linux kernel packages immediately.

Vulnerability matrix for CAN-2004-0077

Related

nessus 21
gentoo 1
openvas 32
debian 28
osv 13
redhat 3
securityvulns 2
packetstorm 1
ubuntucve 1
cve 2
cert 1
slackware 1
cvelist 2
nvd 2
suse 1
nessus
nessus
Debian DSA-456-1 : linux-kernel-2.2.19-arm - failing function and TLB flush
2004-09-29 00:00:00
GLSA-200403-02 : Linux kernel do_mremap local privilege escalation vulnerability
2004-08-30 00:00:00
Debian DSA-453-1 : linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
2004-09-29 00:00:00
gentoo
gentoo
Linux kernel do_mremap local privilege escalation vulnerability
2004-03-05 00:00:00
openvas
openvas
Debian Security Advisory DSA 438-1 (kernel)
2008-01-17 00:00:00
Debian Security Advisory DSA 444-1 (kernel-image-2.4.17-ia64)
2008-01-17 00:00:00
Debian Security Advisory DSA 514-1 (kernel-source-2.2.20, kernel-image-2.2-sparc)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 514-1] New Linux 2.2.20 packages fix local root exploit (sparc)
2004-06-04 18:13:25
[SECURITY] [DSA 438-1] New Linux 2.4.18 packages fix local root exploit (alpha+i386+powerpc)
2004-02-18 13:29:42
[SECURITY] [DSA 456-1] New Linux 2.2.19 packages fix local root exploit (arm)
2004-03-06 07:28:25
osv
osv
kernel-image-sparc-2.2 - failing function and TLB flush
2004-06-04 00:00:00
linux-kernel-2.2.10-powerpc-apus - failing function and TLB flush
2004-03-18 00:00:00
linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
2004-03-02 00:00:00
redhat
redhat
(RHSA-2004:066) kernel security update
2004-02-20 00:00:00
(RHSA-2004:069) kernel security update
2004-03-05 00:00:00
(RHSA-2004:106) kernel security update
2004-04-21 00:00:00
securityvulns
securityvulns
[Full-Disclosure] Second critical mremap() bug found in all Linux kernels
2004-02-18 00:00:00
mremap(2) full details available
2004-03-02 00:00:00
packetstorm
packetstorm
isec-0014-mremap-unmap.v2.txt
2004-03-02 00:00:00
ubuntucve
ubuntucve
CVE-2004-0077
2004-03-03 00:00:00
cve
cve
CVE-2004-0077
2004-09-01 04:00:00
CVE-2003-0985
2004-09-01 04:00:00
cert
cert
Linux kernel mremap(2) system call does not properly check return value from do_munmap() function
2004-03-10 00:00:00
slackware
slackware
Kernel security update
2004-02-18 04:37:55
cvelist
cvelist
CVE-2004-0077
2004-09-01 04:00:00
CVE-2003-0985
2004-09-01 04:00:00
nvd
nvd
CVE-2004-0077
2004-03-03 05:00:00
CVE-2003-0985
2004-01-20 05:00:00
suse
suse
local privilege escalation in Linux Kernel
2004-02-18 22:19:53

0.0004 Low

EPSS

Percentile

0.4%

JSON
Related for OSV:DSA-444
nessus21gentoo1openvas32debian28osv13redhat3securityvulns2packetstorm1ubuntucve1cve2cert1slackware1cvelist2nvd2suse1