CVE-2004-0427

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.4.26 Linux kernel versions prior to 2.6.6 aa-sources versions prior to 2.4.23-r2 kernel-image-2.4.18-powerpc-xfs version kernel-image-2.4.18-sun4u version kernel-image-2.4.18-sun4u-smp version kernel-image-2.4.19-sparc version kernel-image-2.4.19-sun4u version kernel-image-2.4.19-sun4u-smp version kernel-headers-2.4.18-sparc version kernel-headers-2.4.19-sparc version

Description The issue is related to multiple vulnerabilities in the Linux kernel, which can lead to a disruption of confidentiality, integrity, and availability of protected information. Exploitation of these vulnerabilities can be done remotely or locally, depending on the specific vulnerability. The do fork function in Linux 2.4.x and 2.6.x does not properly decrement the mm count counter when an error occurs after the mm struct for a child process has been activated, triggering a memory leak that allows local users to cause a denial of service via the clone system call.

Recommendations For Linux kernel versions prior to 2.4.26, update to version 2.4.26 or later. For Linux kernel versions prior to 2.6.6, update to version 2.6.6 or later. For aa-sources versions prior to 2.4.23-r2, update to version 2.4.23-r2 or later. For kernel-image-2.4.18-powerpc-xfs, kernel-image-2.4.18-sun4u, kernel-image-2.4.18-sun4u-smp, kernel-image-2.4.19-sparc, kernel-image-2.4.19-sun4u, kernel-image-2.4.19-sun4u-smp, kernel-headers-2.4.18-sparc, and kernel-headers-2.4.19-sparc, update to a non-vulnerable version. As a temporary workaround, consider restricting access to the clone system call to minimize the risk of exploitation.