PT-2003-2513 · Red Hat+2 · Red Hat+2
Solar Designer
·
Published
1970-01-01
·
Updated
2017-10-11
·
CVE-2004-0177
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Debian GNU/Linux kernel versions prior to 2.4.26
Red Hat Linux kernel versions prior to 2.4.26
Gentoo Linux aa-sources versions prior to 2.4.23-r2
Description
The issue affects the kernel packages in various Linux distributions, including Debian GNU/Linux and Red Hat Linux. The vulnerabilities can be exploited by a local or remote attacker to compromise the confidentiality, integrity, and availability of protected information. The exploitation can lead to information leaks, allowing privileged users to obtain portions of kernel memory.
Recommendations
For Debian GNU/Linux kernel versions prior to 2.4.26, update to version 2.4.26 or later.
For Red Hat Linux kernel versions prior to 2.4.26, update to version 2.4.26 or later.
For Gentoo Linux aa-sources versions prior to 2.4.23-r2, update to version 2.4.23-r2 or later.
As a temporary workaround, consider restricting access to the vulnerable kernel components until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Debian
Gentoo Linux
Red Hat