[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250039

 
 

909

 
 

195882

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0427Date: (C)2004-07-07   (M)2024-02-02


The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows local users to cause a denial of service (memory exhaustion) via the clone (CLONE_VM) system call.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
BID-10221
SECUNIA-11429
SECUNIA-11464
SECUNIA-11486
SECUNIA-11541
SECUNIA-11861
SECUNIA-11891
SECUNIA-11892
20040504-01-U
20040505-01-U
SECUNIA-20162
SECUNIA-20163
SECUNIA-20202
SECUNIA-20338
CLA-2004:846
DSA-1067
DSA-1069
DSA-1070
DSA-1082
FEDORA-2004-111
GLSA-200407-02
MDKSA-2004:037
O-164
RHSA-2004:255
RHSA-2004:260
RHSA-2004:327
SuSE-SA:2004:010
TLSA-2004-14
http://marc.info/?l=linux-kernel&m=108139073506983&w=2
http://linux.bkbits.net:8080/linux-2.4/cset%40407bf20eDeeejm8t36_tpvSE-8EFHA
http://linux.bkbits.net:8080/linux-2.6/cset%40407b1217x4jtqEkpFW2g_-RcF0726A
linux-dofork-memory-leak(16002)
oval:org.mitre.oval:def:10297
oval:org.mitre.oval:def:2819

CWE    1
CWE-401

© SecPod Technologies