Description
Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise Linux 3 | |||
| kernel-0:2.4.21-27.0.2.EL | cpe:/o:redhat:enterprise_linux:3 | RHSA-2005:043 | 2005-01-18T00:00:00Z |
| Red Hat Enterprise Linux 4 | |||
| kernel-0:2.6.9-5.0.3.EL | cpe:/o:redhat:enterprise_linux:4 | RHSA-2005:092 | 2005-02-18T00:00:00Z |
| Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | |||
| cpe:/o:redhat:enterprise_linux:2.1 | RHSA-2005:016 | 2005-01-21T00:00:00Z | |
| cpe:/o:redhat:enterprise_linux:2.1 | RHSA-2005:017 | 2005-01-21T00:00:00Z | |
| Red Hat Enterprise Linux ES version 2.1 | |||
| cpe:/o:redhat:enterprise_linux:2.1 | RHSA-2005:016 | 2005-01-21T00:00:00Z | |
| Red Hat Enterprise Linux WS version 2.1 | |||
| cpe:/o:redhat:enterprise_linux:2.1 | RHSA-2005:016 | 2005-01-21T00:00:00Z | |
| Red Hat Linux Advanced Workstation 2.1 | |||
| cpe:/o:redhat:enterprise_linux:2.1 | RHSA-2005:017 | 2005-01-21T00:00:00Z | |
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DSA |
DSA-1067-1 | New Linux kernel 2.4.16 packages fix several vulnerabilities |
| Debian DSA |
DSA-1069-1 | New Linux kernel 2.4.18 packages fix several vulnerabilities |
| Debian DSA |
DSA-1070-1 | New Linux kernel 2.4.19 packages fix several vulnerabilities |
| Debian DSA |
DSA-1082-1 | New Linux kernel 2.4.17 packages fix several vulnerabilities |
 EUVD |
EUVD-2004-1232 | Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor. |
 Ubuntu USN |
USN-57-1 | Linux kernel vulnerabilities |
References
History
No history.
Subscriptions
Avaya
Subscribe
Converged Communications Server
Subscribe
Intuity Audix
Subscribe
Mn100
Subscribe
Modular Messaging Message Storage Server
Subscribe
Network Routing
Subscribe
S8300
Subscribe
S8500
Subscribe
S8700
Subscribe
S8710
Subscribe
Conectiva
Subscribe
Linux
Subscribe
Linux
Subscribe
Linux Kernel
Subscribe
Mandrakesoft
Subscribe
Mandrake Linux
Subscribe
Mandrake Linux Corporate Server
Subscribe
Mandrake Multi Network Firewall
Subscribe
Redhat
Subscribe
Enterprise Linux
Subscribe
Enterprise Linux Desktop
Subscribe
Fedora Core
Subscribe
Linux
Subscribe
Suse
Subscribe
Suse Linux
Subscribe
Ubuntu
Subscribe
Ubuntu Linux
Subscribe
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-08T00:46:12.034Z
Reserved: 2004-12-15T00:00:00.000Z
Link: CVE-2004-1235
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2005-04-14T04:00:00.000
Modified: 2025-04-03T01:03:51.193
Link: CVE-2004-1235
Redhat
OpenCVE Enrichment
No data.
Weaknesses