| 1 |
Candidate: CVE-2004-1151
|
| 2 |
References:
|
| 3 |
MLIST:[linux-kernel] 20041130 Buffer overrun in arch/x86_64/sys_ia32.c:sys32_ni_syscall()
|
| 4 |
URL:http://www.ussg.iu.edu/hypermail/linux/kernel/0411.3/1467.html
|
| 5 |
MISC:http://linux.bkbits.net:8080/linux-2.6/cset@1.2079
|
| 6 |
MISC:http://linux.bkbits.net:8080/linux-2.6/gnupatch@41ae6af1cR3mJYlW6D8EHxCKSxuJiQ
|
| 7 |
MANDRAKE:MDKSA-2005:022
|
| 8 |
URL:http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:022
|
| 9 |
BUGTRAQ:20041214 [USN-38-1] Linux kernel vulnerabilities
|
| 10 |
URL:http://marc.theaimsgroup.com/?l=bugtraq&m=110306397320336&w=2
|
| 11 |
Description:
|
| 12 |
Multiple buffer overflows in the (1) sys32_ni_syscall and (2)
|
| 13 |
sys32_vm86_warning functions in sys_ia32.c for Linux 2.6.x may allow local
|
| 14 |
attackers to modify kernel memory and gain privileges.
|
| 15 |
Notes:
|
| 16 |
<= 2.4.27 doesn't look vulnerable, and we don't have 2.4/x86_64 anyway.
|
| 17 |
Bugs:
|
| 18 |
upstream: released (2.6.10)
|
| 19 |
linux-2.6: N/A
|
| 20 |
2.6.8-sarge-security: released (2.6.8-11) [arch-x86_64-sys32_ni-overflow.dpatch]
|
| 21 |
2.4.27-sarge-security: N/A
|
| 22 |
2.4.19-woody-security: N/A
|
| 23 |
2.4.18-woody-security: N/A
|
| 24 |
2.4.17-woody-security: N/A
|
| 25 |
2.4.16-woody-security: N/A
|
| 26 |
2.4.17-woody-security-hppa: N/A
|
| 27 |
2.4.17-woody-security-ia64: N/A
|
| 28 |
2.4.18-woody-security-hppa: N/A
|
Parent Directory
| 
Revision Log