Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.51091
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2003:416
Summary:NOSUMMARY
Description:Description:

The remote host is missing updates announced in
advisory RHSA-2003:416.

The Linux kernel handles the basic functions of the operating system.

Paul Starzetz discovered a flaw in bounds checking in mremap() in the Linux
kernel versions 2.4.23 and previous which may allow a local attacker to
gain root privileges. No exploit is currently available
however, it is
believed that this issue is exploitable (although not trivially.) The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CVE-2003-0985 to this issue.

All users of Red Hat Enterprise Linux 3 are advised to upgrade to these
errata packages, which contain a backported security patch that corrects
this issue.

Red Hat would like to thank Paul Starzetz from ISEC for disclosing this
issue as well as Andrea Arcangeli and Solar Designer for working on the patch.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2003-416.html
http://isec.pl/vulnerabilities/isec-0013-mremap.txt

Risk factor : High

CVSS Score:
7.2

Cross-Ref: BugTraq ID: 9356
Common Vulnerability Exposure (CVE) ID: CVE-2003-0985
http://www.securityfocus.com/bid/9356
Bugtraq: 20040105 Linux kernel do_mremap() proof-of-concept exploit code (Google Search)
http://marc.info/?l=bugtraq&m=107340358402129&w=2
Bugtraq: 20040105 Linux kernel mremap vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=107332782121916&w=2
Bugtraq: 20040106 Linux mremap bug correction (Google Search)
http://marc.info/?l=bugtraq&m=107340814409017&w=2
Bugtraq: 20040107 [slackware-security] Kernel security update (SSA:2004-006-01) (Google Search)
http://marc.info/?l=bugtraq&m=107350348418373&w=2
Bugtraq: 20040108 [slackware-security] Slackware 8.1 kernel security update (SSA:2004-008-01) (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2004-01/0070.html
Bugtraq: 20040112 SmoothWall Project Security Advisory SWP-2004:001 (Google Search)
http://marc.info/?l=bugtraq&m=107394143105081&w=2
CERT/CC vulnerability note: VU#490620
http://www.kb.cert.org/vuls/id/490620
Computer Incident Advisory Center Bulletin: O-045
http://www.ciac.org/ciac/bulletins/o-045.shtml
Conectiva Linux advisory: CLA-2004:799
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000799
Debian Security Information: DSA-1067 (Google Search)
http://www.debian.org/security/2006/dsa-1067
Debian Security Information: DSA-1069 (Google Search)
http://www.debian.org/security/2006/dsa-1069
Debian Security Information: DSA-1070 (Google Search)
http://www.debian.org/security/2006/dsa-1070
Debian Security Information: DSA-1082 (Google Search)
http://www.debian.org/security/2006/dsa-1082
Debian Security Information: DSA-413 (Google Search)
http://www.debian.org/security/2004/dsa-413
Debian Security Information: DSA-417 (Google Search)
http://www.debian.org/security/2004/dsa-417
Debian Security Information: DSA-423 (Google Search)
http://www.debian.org/security/2004/dsa-423
Debian Security Information: DSA-427 (Google Search)
http://www.debian.org/security/2004/dsa-427
Debian Security Information: DSA-439 (Google Search)
http://www.debian.org/security/2004/dsa-439
Debian Security Information: DSA-440 (Google Search)
http://www.debian.org/security/2004/dsa-440
Debian Security Information: DSA-442 (Google Search)
http://www.debian.org/security/2004/dsa-442
Debian Security Information: DSA-450 (Google Search)
http://www.debian.org/security/2004/dsa-450
Debian Security Information: DSA-470 (Google Search)
http://www.debian.org/security/2004/dsa-470
Debian Security Information: DSA-475 (Google Search)
http://www.debian.org/security/2004/dsa-475
En Garde Linux Advisory: ESA-20040105-001
http://www.linuxsecurity.com/advisories/engarde_advisory-3904.html
Immunix Linux Advisory: IMNX-2004-73-001-01
http://download.immunix.org/ImmunixOS/7.3/updates/IMNX-2004-73-001-01
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:001
http://isec.pl/vulnerabilities/isec-0013-mremap.txt
http://www.osvdb.org/3315
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A860
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A867
http://www.redhat.com/support/errata/RHSA-2003-416.html
http://www.redhat.com/support/errata/RHSA-2003-417.html
http://www.redhat.com/support/errata/RHSA-2003-418.html
http://www.redhat.com/support/errata/RHSA-2003-419.html
http://secunia.com/advisories/10532
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://secunia.com/advisories/20338
SGI Security Advisory: 20040102-01-U
ftp://patches.sgi.com/support/free/security/advisories/20040102-01-U
SuSE Security Announcement: SuSE-SA:2004:001 (Google Search)
SuSE Security Announcement: SuSE-SA:2004:003 (Google Search)
http://www.novell.com/linux/security/advisories/2004_03_linux_kernel.html
http://marc.info/?l=bugtraq&m=107332754521495&w=2
XForce ISS Database: linux-domremap-gain-privileges(14135)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14135
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.