Denial of Service Vulnerability in Linux Kernel 2.4.19 and Earlier
CVE-2004-1057

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Enterprise Linux
Vendor: CVE Published:; 21 January 2005

Summary

Multiple drivers within the Linux kernel versions up to and including 2.4.19 do not correctly set the VM_IO flag on certain memory areas. This oversight can result in erroneous reference counts, leading to instability and potential kernel panics when processes try to access freed pages. The resulting denial of service can severely affect system availability, making it crucial for organizations to apply patches or other mitigation strategies.

References

http://www.redhat.com/support/errata/RHSA-2006-0140.html

vendor-advisoryx_refsource_REDHAT

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/12338

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 21, 2005
Vulnerability Reserved
Nov 23, 2004