blob: b5445d343d3b05660d256f1f19dbbf6a1694b84f (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
Candidate: CVE-2004-1058
References:
FEDORA:FLSA:152532
URL:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
GENTOO:GLSA-200408-24
URL:http://www.gentoo.org/security/en/glsa/glsa-200408-24.xml
MANDRAKE:MDKSA-2005:022
URL:http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:022
UBUNTU:USN-38-1
URL:http://www.ubuntulinux.org/support/documentation/usn/usn-38-1
XF:linux-spawning-race-condition(17151)
URL:http://xforce.iss.net/xforce/xfdb/17151
Description:
Race condition in Linux kernel 2.6 allows local users to read the environment
variables of another process that is still spawning via /proc/.../cmdline.
Notes:
Bugs:
upstream: released (2.4.33-pre2)
linux-2.6:
2.6.8-sarge-security: released (2.6.8-14) [proc-cmdline-mmput-leak.dpatch]
2.4.27-sarge-security: released (2.4.27-10sarge2) [203_proc_pid_cmdline_race.diff]
2.4.19-woody-security:
2.4.18-woody-security:
2.4.17-woody-security:
2.4.16-woody-security:
2.4.17-woody-security-hppa:
2.4.17-woody-security-ia64:
2.4.18-woody-security-hppa:
|