blob: f39ee81fe7f915cc2d7d675d606fcecc820e29f2 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
Candidate: CVE-2004-2302
References:
http://linux.bkbits.net:8080/linux-2.6/cset%404186a4deVoR88JjTwMa3ZnIp-_YJsA
http://kernel.org/pub/linux/kernel/people/akpm/patches/2.6/2.6.10-rc1/2.6.10-rc1-mm1/broken-out/fix-race-in-sysfs_read_file-and-sysfs_write_file.patch
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:218
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219
http://www.novell.com/linux/security/advisories/2005_44_kernel.html
Description:
Race condition in the sysfs_read_file and sysfs_write_file functions in Linux
kernel before 2.6.10 allows local users to read kernel memory and cause a
denial of service (crash) via large offsets in sysfs files.
Notes:
dannf> sysfs is only in 2.6, so marking 2.4 N/A
Bugs: 322339
upstream: released (2.6.10)
linux-2.6: N/A
2.6.8-sarge-security: released (2.6.8-16sarge1) [fs-sysfs-read-write-race.dpatch]
2.4.27-sarge-security: N/A
2.4.19-woody-security: N/A
2.4.18-woody-security: N/A
2.4.17-woody-security: N/A
2.4.16-woody-security: N/A
2.4.17-woody-security-hppa: N/A
2.4.17-woody-security-ia64: N/A
2.4.18-woody-security-hppa: N/A
|
