Candidate: CVE-2004-1058 References: FEDORA:FLSA:152532 URL:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532 GENTOO:GLSA-200408-24 URL:http://www.gentoo.org/security/en/glsa/glsa-200408-24.xml MANDRAKE:MDKSA-2005:022 URL:http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:022 UBUNTU:USN-38-1 URL:http://www.ubuntulinux.org/support/documentation/usn/usn-38-1 XF:linux-spawning-race-condition(17151) URL:http://xforce.iss.net/xforce/xfdb/17151 Description: Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline. Notes: Bugs: upstream: released (2.4.33-pre2) linux-2.6: 2.6.8-sarge-security: released (2.6.8-14) [proc-cmdline-mmput-leak.dpatch] 2.4.27-sarge-security: released (2.4.27-10sarge2) [203_proc_pid_cmdline_race.diff] 2.4.19-woody-security: 2.4.18-woody-security: 2.4.17-woody-security: 2.4.16-woody-security: 2.4.17-woody-security-hppa: 2.4.17-woody-security-ia64: 2.4.18-woody-security-hppa: