Denial of Service Vulnerability in Linux Kernel 2.6 by PaX Patches
CVE-2004-1983

Currently unrated

Key Information:

Vendor: The Pax Team
Status: Pax Linux
Vendor: CVE Published:; 2 May 2004

🔔 Create The Pax Team Vulnerability Alert

What is CVE-2004-1983?

The arch_get_unmapped_area function within mmap.c in the PaX patches for the Linux kernel 2.6 is susceptible to a denial of service attack. When Address Space Layout Randomization (ASLR) is enabled, local users can exploit this vulnerability, potentially causing an infinite loop that disrupts system processes. The exact attack vectors remain unspecified, rendering it crucial for users and system administrators to address this vulnerability to maintain system integrity and availability.

References

http://marc.info/?l=bugtraq&m=108420555920369&w=2

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/16037

vdb-entryx_refsource_XF

http://pax.grsecurity.net/

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
May 4, 2005
Vulnerability published
May 2, 2004