Multiple Buffer Overflows in Linux Kernel 2.6.x by Linux Vendor
CVE-2004-1151

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Ubuntu Linux
Vendor: CVE Published:; 10 January 2005

Summary

Multiple instances of buffer overflow vulnerabilities exist in the Linux Kernel 2.6.x, specifically within the sys32_ni_syscall and sys32_vm86_warning functions defined in sys_ia32.c. These vulnerabilities can be exploited by local attackers to manipulate kernel memory, potentially leading to unauthorized privilege escalation. This poses a significant risk within systems running affected versions, emphasizing the need for timely updates and patches to secure the kernel.

References

http://linux.bkbits.net:8080/linux-2.6/cset%401.2079

x_refsource_MISC

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRAKE

http://marc.info/?l=bugtraq&m=110306397320336&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Dec 7, 2004