Denial of Service Vulnerability in Linux Kernel 2.4 and 2.6 by Red Hat
CVE-2003-0986

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Enterprise Linux
Vendor: CVE Published:; 31 December 2003

What is CVE-2003-0986?

On Linux kernel versions 2.4 prior to 2.4.24 and 2.6 prior to 2.6.2, certain functions related to the ppc64 architecture inadequately handle the transfer of data from user space to kernel space, violating security boundaries. This flaw can be exploited by local users to initiate a denial of service, potentially disrupting system functionality and stability.

References

http://www.redhat.com/support/errata/RHSA-2004-017.html

vendor-advisoryx_refsource_REDHAT

http://linux.bkbits.net:8080/linux-2.6/cset%403ffcf122S7e...

x_refsource_CONFIRM

http://linux.bkbits.net:8080/linux-2.4/cset%403fdd54b3u9E...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 31, 2003
Vulnerability Reserved
Dec 16, 2003