Vulnerability Note VU#301156
Linux kernel do_brk() function contains integer overflow
A vulnerability in the linux kernel may permit a local user to gain elevated privileges.
Versions of the Linux kernel prior to 2.4.23 an integer overflow vulnerability in the brk system call (do_brk() function). This vulnerability may be exploited by a local user to gain elevated or root privileges.
An exploit for this vulnerability exists, and has been used to compromise systems.
A local user on the system can exploit this vulnerability to gain access to the kernel address space and gain elevated privileges.
This vulnerability has been resolved in versions 2.4.23 for the 2.4 kernel tree, and the 2.6.0-test6 kernel tree. Please check the "Systems Affected" section for vendor-specific releases.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Astaro||Affected||-||02 Dec 2003|
|Debian||Affected||-||02 Dec 2003|
|LINUX||Affected||-||02 Dec 2003|
|MandrakeSoft||Affected||-||02 Dec 2003|
|Red Hat Inc.||Affected||-||02 Dec 2003|
|Slackware||Affected||-||02 Dec 2003|
|Trustix||Affected||-||02 Dec 2003|
CVSS Metrics (Learn More)
Thanks to Wichert Akkerman for reporting this vulnerability.
This document was written by Jason A Rafail.
- CVE IDs: CAN-2003-0961
- Date Public: 01 Dec 2003
- Date First Published: 02 Dec 2003
- Date Last Updated: 02 Dec 2003
- Severity Metric: 23.62
- Document Revision: 9
If you have feedback, comments, or additional information about this vulnerability, please send us email.