7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
34.5%
The ia32el package contains IA-32 Execution Layer platform which allows
emulation of IA-32 binaries on IA-64.
A flaw was found in the binfmt_elf loader of the Linux kernel which also
affects the IA-32 Execution Layer. A local user could create an
interpreter name string that is not NULL terminated, leading to a denial of
service (crash). The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-1072 to this issue.
This update also addresses the following issues:
– Fixed execve to invoke ia32 interpreter
– Credential fixes
– Fixed a bug causing ibm-jvm to fail
– Other minor bug fixes
Please refer to the package release notes for detailed information about
these changes.
All users of ia32el should upgrade to this updated package, which
resolves these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ia64 | ia32el | < 1.2-2.EL3.1 | ia32el-1.2-2.EL3.1.ia64.rpm |