Launchpad.net

CVE 2004-0427

The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows local users to cause a denial of service (memory exhaustion) via the clone (CLONE_VM) system call.

See the

CVE page on Mitre.org for more details.

References

FEDORA: FEDORA-2004-111
GENTOO: GLSA-200407-02
REDHAT: RHSA-2004:255
REDHAT: RHSA-2004:260
REDHAT: RHSA-2004:327
SGI: 20040504-01-U
SGI: 20040505-01-U
SUSE: SuSE-SA:2004:010
TURBO: TLSA-2004-14
MISC: http://linux.bkbits.ne...
MISC: http://linux.bkbits.ne...
CIAC: O-164
BID: 10221
SECUNIA: 11429
SECUNIA: 11464
SECUNIA: 11486
SECUNIA: 11541
SECUNIA: 11861
SECUNIA: 11891
SECUNIA: 11892
DEBIAN: DSA-1070
DEBIAN: DSA-1067
DEBIAN: DSA-1069
SECUNIA: 20162
SECUNIA: 20163
SECUNIA: 20202
DEBIAN: DSA-1082
SECUNIA: 20338
ENGARDE: ESA-20040428-004
MANDRAKE: MDKSA-2004:037
MLIST: [linux-kernel] 2004040...
CONECTIVA: CLA-2004:846
XF: linux-dofork-memory-le...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2004-0427

Related bugs

References