CVE-2004-1235 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2004-1235
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-1235

Description: Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18800 TRUSTIX http://www.trustix.org/errata/2005/0001/ SUSE http://www.novell.com/linux/security/advisories/2005_01_sr.html SAID Secunia Advisory: SA20162 Secunia Advisory: SA20163 Secunia Advisory: SA20202 Secunia Advisory: SA20338 REDHAT http://www.redhat.com/support/errata/RHSA-2005-017.html http://www.redhat.com/support/errata/RHSA-2005-016.html http://www.redhat.com/support/errata/RHSA-2005-092.html http://www.redhat.com/support/errata/RHSA-2005-043.html MISC http://isec.pl/vulnerabilities/isec-0021-uselib.txt MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:022 FEDORA http://www.securityfocus.com/advisories/7805 http://www.securityfocus.com/advisories/7806 DEBIAN http://www.debian.org/security/2006/dsa-1082 http://www.debian.org/security/2006/dsa-1069 http://www.debian.org/security/2006/dsa-1067 http://www.debian.org/security/2006/dsa-1070 CONFIRM http://www.securityfocus.com/advisories/7804 CONECTIVA http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110512575901427&w=2 BID 12190

Return to the previous page.