CVE-2004-2536

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.6 through 2.6.5

Description The issue arises from the exit thread function in the Linux kernel, which fails to invalidate per-TSS io bitmap pointers when a process exits without dropping IO access permissions obtained from the ioperm function. This allows other processes to access restricted memory locations and possibly gain privileges.

Recommendations For Linux kernel versions 2.6 through 2.6.5, as a temporary workaround, consider restricting access to the ioperm function to minimize the risk of exploitation. Additionally, ensure that all processes properly drop IO access permissions when exiting to prevent unauthorized access to per-TSS pointers. At the moment, there is no information about a newer version that contains a fix for this vulnerability.