blob: 6db82f6457a74942c5c1881b79a213f460a6a40b (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
|
Candidate: CVE-2003-0961
References:
BUGTRAQ:20031204 [iSEC] Linux kernel do_brk() vulnerability details
URL:http://marc.theaimsgroup.com/?l=bugtraq&m=107064798706473&w=2
MISC:http://isec.pl/papers/linux_kernel_do_brk.pdf
REDHAT:RHSA-2003:368
URL:http://www.redhat.com/support/errata/RHSA-2003-368.html
REDHAT:RHSA-2003:389
URL:http://www.redhat.com/support/errata/RHSA-2003-389.html
DEBIAN:DSA-403
URL:http://www.debian.org/security/2003/dsa-403
DEBIAN:DSA-417
URL:http://www.debian.org/security/2004/dsa-417
DEBIAN:DSA-423
URL:http://www.debian.org/security/2004/dsa-423
DEBIAN:DSA-433
URL:http://www.debian.org/security/2004/dsa-433
DEBIAN:DSA-439
URL:http://www.debian.org/security/2004/dsa-439
DEBIAN:DSA-440
URL:http://www.debian.org/security/2004/dsa-440
DEBIAN:DSA-442
URL:http://www.debian.org/security/2004/dsa-442
DEBIAN:DSA-450
URL:http://www.debian.org/security/2004/dsa-450
DEBIAN:DSA-470
URL:http://www.debian.org/security/2004/dsa-470
DEBIAN:DSA-475
URL:http://www.debian.org/security/2004/dsa-475
MANDRAKE:MDKSA-2003:110
URL:http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:110
CONECTIVA:CLA-2003:796
URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000796
SUSE:SuSE-SA:2003:049
URL:http://www.novell.com/linux/security/advisories/2003_049_kernel.html
BUGTRAQ:20031204 Hot fix for do_brk bug
URL:http://marc.theaimsgroup.com/?l=bugtraq&m=107064830206816&w=2
BUGTRAQ:20040112 SmoothWall Project Security Advisory SWP-2004:001
URL:http://marc.theaimsgroup.com/?l=bugtraq&m=107394143105081&w=2
CERT-VN:VU#301156
URL:http://www.kb.cert.org/vuls/id/301156
SECUNIA:10328
URL:http://secunia.com/advisories/10328
SECUNIA:10329
URL:http://secunia.com/advisories/10329
SECUNIA:10330
URL:http://secunia.com/advisories/10330
SECUNIA:10333
URL:http://secunia.com/advisories/10333
SECUNIA:10338
URL:http://secunia.com/advisories/10338
Description:
Integer overflow in the do_brk function for the brk system call in Linux
kernel 2.4.22 and earlier allows local users to gain root privileges.
Notes:
Bugs:
upstream: released (2.4.23-pre7)
linux-2.6: N/A
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.4.19-woody-security: released (2.4.19-4.woody1)
2.4.18-woody-security: released (2.4.18-14)
2.4.17-woody-security: released (2.4.17-1woody2)
2.4.16-woody-security: released (2.4.16-1woody2)
2.4.17-woody-security-hppa: released (32.3)
2.4.17-woody-security-ia64: released (011226.14.1)
2.4.18-woody-security-hppa: released (62.2)
|