CVE-2004-1983

Name of the Vulnerable Software and Affected Versions aa-sources versions prior to 2.4.23-r2 Linux kernel 2.6 (with PaX patches and Address Space Layout Randomization (ASLR) enabled)

Description The issue affects the confidentiality, integrity, and availability of protected information. It can be exploited locally. The arch get unmapped area function in mmap.c in the PaX patches for the Linux kernel allows local users to cause a denial of service (infinite loop) via unknown attack vectors.

Recommendations For aa-sources versions prior to 2.4.23-r2, update to version 2.4.23-r2 or later. For Linux kernel 2.6 with PaX patches and ASLR enabled, consider disabling ASLR as a temporary workaround until a patch is available.