CVE-2002-1826

Name of the Vulnerable Software and Affected Versions grsecurity version 1.9.4 for Linux kernel 2.4.18

Description The issue allows local users to bypass read-only permissions. This is achieved by using mmap to directly map /dev/mem or /dev/kmem to kernel memory, thus potentially allowing unauthorized access to sensitive areas of the system.

Recommendations For grsecurity version 1.9.4, consider restricting access to /dev/mem and /dev/kmem to prevent unauthorized mapping to kernel memory. As a temporary workaround, limit the use of mmap to reduce the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.