CVE-2004-0077
Gravedad CVSS v2.0:
ALTA
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
03/03/2004
Última modificación:
03/04/2025
Descripción
La función do_remap en mremap de Linux 2.2 a 2.2.25, 2.4 a 2.4.24, y 2.6 a 2.6.2 no comprueba adecuadamente el valor devuelto por la función do_munmap cuando se excede el número máximo de descriptores VMA, lo que permite a usuarios locales ganar privilegios de root, una vulnerabilidad distinta de CAN-2004-0985.
Impacto
Puntuación base 2.0
7.20
Gravedad 2.0
ALTA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:redhat:bigmem_kernel:2.4.20-8:*:i686:*:*:*:*:* | ||
| cpe:2.3:a:redhat:kernel:2.4.20-8:*:athlon_smp:*:*:*:*:* | ||
| cpe:2.3:a:redhat:kernel:2.4.20-8:*:i386:*:*:*:*:* | ||
| cpe:2.3:a:redhat:kernel:2.4.20-8:*:i686_smp:*:*:*:*:* | ||
| cpe:2.3:a:redhat:kernel_doc:2.4.20-8:*:i386:*:*:*:*:* | ||
| cpe:2.3:a:redhat:kernel_source:2.4.20-8:*:i386_src:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.5:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.6:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.7:*:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:2.2.8:*:*:*:*:*:*:* |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0040.html
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000820
- http://fedoranews.org/updates/FEDORA-2004-079.shtml
- http://frontal2.mandriva.com/security/advisories?name=MDKSA-2004%3A015
- http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt
- http://marc.info/?l=bugtraq&m=107711762014175&w=2
- http://marc.info/?l=bugtraq&m=107712137732553&w=2
- http://marc.info/?l=bugtraq&m=107755871932680&w=2
- http://security.gentoo.org/glsa/glsa-200403-02.xml
- http://www.ciac.org/ciac/bulletins/o-082.shtml
- http://www.debian.org/security/2004/dsa-438
- http://www.debian.org/security/2004/dsa-439
- http://www.debian.org/security/2004/dsa-440
- http://www.debian.org/security/2004/dsa-441
- http://www.debian.org/security/2004/dsa-442
- http://www.debian.org/security/2004/dsa-444
- http://www.debian.org/security/2004/dsa-450
- http://www.debian.org/security/2004/dsa-453
- http://www.debian.org/security/2004/dsa-454
- http://www.debian.org/security/2004/dsa-456
- http://www.debian.org/security/2004/dsa-466
- http://www.debian.org/security/2004/dsa-470
- http://www.debian.org/security/2004/dsa-475
- http://www.debian.org/security/2004/dsa-514
- http://www.kb.cert.org/vuls/id/981222
- http://www.novell.com/linux/security/advisories/2004_05_linux_kernel.html
- http://www.osvdb.org/3986
- http://www.redhat.com/support/errata/RHSA-2004-065.html
- http://www.redhat.com/support/errata/RHSA-2004-066.html
- http://www.redhat.com/support/errata/RHSA-2004-069.html
- http://www.redhat.com/support/errata/RHSA-2004-106.html
- http://www.securityfocus.com/bid/9686
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.404734
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15244
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A825
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A837
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0040.html
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000820
- http://fedoranews.org/updates/FEDORA-2004-079.shtml
- http://frontal2.mandriva.com/security/advisories?name=MDKSA-2004%3A015
- http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt
- http://marc.info/?l=bugtraq&m=107711762014175&w=2
- http://marc.info/?l=bugtraq&m=107712137732553&w=2
- http://marc.info/?l=bugtraq&m=107755871932680&w=2
- http://security.gentoo.org/glsa/glsa-200403-02.xml
- http://www.ciac.org/ciac/bulletins/o-082.shtml
- http://www.debian.org/security/2004/dsa-438
- http://www.debian.org/security/2004/dsa-439
- http://www.debian.org/security/2004/dsa-440
- http://www.debian.org/security/2004/dsa-441
- http://www.debian.org/security/2004/dsa-442
- http://www.debian.org/security/2004/dsa-444
- http://www.debian.org/security/2004/dsa-450
- http://www.debian.org/security/2004/dsa-453
- http://www.debian.org/security/2004/dsa-454
- http://www.debian.org/security/2004/dsa-456
- http://www.debian.org/security/2004/dsa-466
- http://www.debian.org/security/2004/dsa-470
- http://www.debian.org/security/2004/dsa-475
- http://www.debian.org/security/2004/dsa-514
- http://www.kb.cert.org/vuls/id/981222
- http://www.novell.com/linux/security/advisories/2004_05_linux_kernel.html
- http://www.osvdb.org/3986
- http://www.redhat.com/support/errata/RHSA-2004-065.html
- http://www.redhat.com/support/errata/RHSA-2004-066.html
- http://www.redhat.com/support/errata/RHSA-2004-069.html
- http://www.redhat.com/support/errata/RHSA-2004-106.html
- http://www.securityfocus.com/bid/9686
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.404734
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15244
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A825
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A837