Lucene search
SuseSUSE-SA:2003:021HistoryMar 25, 2003 - 5:27 p.m.
local privilege escalation in kernel
2003-03-2517:27:05
lists.opensuse.org
16
0.0004 Low
EPSS
Percentile
5.9%
The Linux kernel has a security flaw in all versions used on SuSE products excluding the upcoming SuSE Linux 8.2 distribution. The flaw is known as ptrace/modprobe bug: The local attacker can use ptrace and attach to a modprobe process that is spawned if the user triggers the loading of a kernel module using the kmod kernel module subsystem. This can be done by asking for network protocols that are supplied by kernel modules which are not loaded (yet). The vulnerability allows the attacker to execute arbitrary commands as root.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 7.3 | i386 | k_deflt | < 2.4.18-262 | k_deflt-2.4.18-262.i386.rpm |
| openSUSE | 8.0 | i386 | k_psmp | < 2.4.18-242 | k_psmp-2.4.18-242.i386.rpm |
| openSUSE | 8.0 | i386 | kernel-source | < 2.4.18.SuSE-149 | kernel-source-2.4.18.SuSE-149.i386.rpm |
| openSUSE | 7.3 | i386 | k_psmp | < 2.4.18-243 | k_psmp-2.4.18-243.i386.rpm |
| openSUSE | 8.1 | i586 | k_smp | < 2.4.19-257 | k_smp-2.4.19-257.i586.rpm |
| openSUSE | 7.1 | i386 | k_deflt | < 2.4.18-262 | k_deflt-2.4.18-262.i386.rpm |
| openSUSE | 8.0 | i386 | k_i386 | < 2.4.18-236 | k_i386-2.4.18-236.i386.rpm |
| openSUSE | 7.2 | i386 | k_smp | < 2.4.18-244 | k_smp-2.4.18-244.i386.rpm |
| openSUSE | 7.3 | i386 | k_i386 | < 2.4.18-237 | k_i386-2.4.18-237.i386.rpm |
| openSUSE | 7.3 | i386 | k_smp | < 2.4.18-244 | k_smp-2.4.18-244.i386.rpm |
Related
debian
debian
nessus
nessus
Debian DSA-276-1 : linux-kernel-s390 - local privilege escalation
2004-09-29 00:00:00
SUSE-SA:2003:021: kernel
2004-07-25 00:00:00
Debian DSA-270-1 : linux-kernel-mips - local privilege escalation
2004-09-29 00:00:00
saint
saint
Linux kernel ptrace privilege elevation vulnerability
2007-06-27 00:00:00
Linux kernel ptrace privilege elevation vulnerability
2007-06-27 00:00:00
Linux kernel ptrace privilege elevation vulnerability
2007-06-27 00:00:00
openvas
openvas
osv
osv
linux-kernel-s390 - local privilege escalation
2003-04-03 00:00:00
linux-kernel-mips - local privilege escalation
2003-03-27 00:00:00
linux-kernel-2.4.16-arm - several vulnerabilities
2004-04-26 00:00:00
redhat
redhat
(RHSA-2003:103) kernel security update
2003-03-21 00:00:00
cve
cve
CVE-2003-0127
2003-03-31 05:00:00
cvelist
cvelist
CVE-2003-0127
2003-03-18 05:00:00
ubuntucve
ubuntucve
CVE-2003-0127
2003-03-31 00:00:00
cert
cert
ptrace contains vulnerability allowing for local root compromise
2004-04-16 00:00:00
securityvulns
securityvulns
[ESA-20030318-009] Several 'kernel' vulnerabilities
2003-03-19 00:00:00