Lucene search
SuseSUSE-SA:2003:049HistoryDec 04, 2003 - 3:40 p.m.
local root exploit in Linux Kernel
2003-12-0415:40:06
lists.opensuse.org
52
0.009 Low
EPSS
Percentile
81.0%
This security update fixes a serious vulnerability in the Linux kernel. A missing bounds check in the brk() system call allowed processes to request memory beyond the maximum size allowed for tasks, causing kernel memory to be mapped into the process’ address space. This allowed local attackers to obtain super user privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 8.1 | i586 | k_deflt | < 2.4.21-151 | k_deflt-2.4.21-151.i586.rpm |
| openSUSE | 8.0 | i386 | k_i386 | < 2.4.18-281 | k_i386-2.4.18-281.i386.rpm |
| openSUSE | 8.1 | i586 | k_athlon | < 2.4.21-151 | k_athlon-2.4.21-151.i586.rpm |
| openSUSE | 8.2 | i586 | k_athlon | < 2.4.20-101 | k_athlon-2.4.20-101.i586.rpm |
| openSUSE | 7.3 | i386 | k_i386 | < 2.4.18-281 | k_i386-2.4.18-281.i386.rpm |
| openSUSE | 8.0 | i386 | k_smp | < 2.4.18-281 | k_smp-2.4.18-281.i386.rpm |
| openSUSE | 7.3 | i386 | kernel-source | < 2.4.18.SuSE-281 | kernel-source-2.4.18.SuSE-281.i386.rpm |
| openSUSE | 8.1 | i586 | kernel-source | < 2.4.21-151 | kernel-source-2.4.21-151.i586.rpm |
| openSUSE | 7.3 | i386 | k_deflt | < 2.4.18-281 | k_deflt-2.4.18-281.i386.rpm |
| openSUSE | 9.0 | x86_64 | kernel-source | < 2.4.21-149 | kernel-source-2.4.21-149.x86_64.rpm |
Related
suse
suse
cache poisoning/denial-of-service in bind8
2003-11-28 14:58:12
remote code execution in hylafax
2003-11-10 14:45:25
local privilege escalation in rsync
2003-12-04 17:18:15
cert
cert
ISC BIND 8 vulnerable to cache poisoning via negative responses
2003-12-01 00:00:00
Integer overflow vulnerability in rsync
2003-12-09 00:00:00
Linux kernel do_brk() function contains integer overflow
2003-12-02 00:00:00
securityvulns
securityvulns
SUSE Security Announcement: hylafax (SuSE-SA:2003:045)
2003-11-13 00:00:00
[KDE SECURITY ADVISORY] KDM vulnerabilities
2003-09-17 00:00:00
gentoo
gentoo
kdebase: KDM vulnerabilities
2003-11-15 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200311-01 (kdebase)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200311-01 (kdebase)
2008-09-24 00:00:00
Debian Security Advisory DSA 388-1 (kdebase)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-388-1 : kdebase - several vulnerabilities
2004-09-29 00:00:00
RHEL 2.1 : kdebase (RHSA-2003:270)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : kdebase (MDKSA-2003:091)
2004-07-31 00:00:00
osv
osv
kdebase - several vulnerabilities
2003-09-19 00:00:00
kernel-image-2.4.18-1-alpha, kernel-image-2.4.18-1-i386, kernel-source-2.4.18 - local root exploit
2003-12-01 00:00:00
kernel-patch-2.4.17-mips - integer overflow
2004-02-04 00:00:00
redhat
redhat
(RHSA-2003:270) kdebase security update
2003-09-16 00:00:00
(RHSA-2003:389) kernel security update
2003-12-01 00:00:00
(RHSA-2003:236) kdelibs security update
2003-07-30 00:00:00
debian
debian
[SECURITY] [DSA 433-1] New Linux 2.4.17 packages fix local root exploit (mips+mipsel)
2004-02-04 06:53:24
[SECURITY] [DSA-403-1] userland can access Linux kernel memory
2003-12-01 20:17:12
ubuntucve
ubuntucve
cve
cve
slackware
slackware
minor advisory typo
2003-12-02 11:21:22
Kernel security update
2003-12-02 10:05:30
packetstorm
packetstorm
_BSSADV-0000.txt
2003-12-01 00:00:00