CVE-2004-0427 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-0427
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0427

Description: The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows local users to cause a denial of service (memory exhaustion) via the clone (CLONE_VM) system call.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/16002 TURBO http://www.turbolinux.com/security/2004/TLSA-2004-14.txt SUSE http://www.novell.com/linux/security/advisories/2004_10_kernel.html SGI SAID Secunia Advisory: SA20338 Secunia Advisory: SA20202 Secunia Advisory: SA20163 Secunia Advisory: SA20162 Secunia Advisory: SA11892 Secunia Advisory: SA11891 Secunia Advisory: SA11861 Secunia Advisory: SA11541 Secunia Advisory: SA11464 Secunia Advisory: SA11486 Secunia Advisory: SA11429 REDHAT http://www.redhat.com/support/errata/RHSA-2004-327.html http://www.redhat.com/support/errata/RHSA-2004-255.html http://www.redhat.com/support/errata/RHSA-2004-260.html OVAL http://oval.mitre.org/oval/definitions/data/oval2819.html MLIST http://marc.theaimsgroup.com/?l=linux-kernel&m=108139073506983&w=2 MISC http://linux.bkbits.net:8080/linux-2.6/cset@407b1217x4jtqEkpFW2g_-RcF0726A http://linux.bkbits.net:8080/linux-2.4/cset@407bf20eDeeejm8t36_tpvSE-8EFHA MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:037 GENTOO http://security.gentoo.org/glsa/glsa-200407-02.xml FEDORA http://fedoranews.org/updates/FEDORA-2004-111.shtml ENGARDE DEBIAN http://www.debian.org/security/2006/dsa-1069 http://www.debian.org/security/2006/dsa-1082 http://www.debian.org/security/2006/dsa-1070 http://www.debian.org/security/2006/dsa-1067 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846 CIAC http://www.ciac.org/ciac/bulletins/o-164.shtml BID 10221

Return to the previous page.