Vulnerability Details CVE-2004-0491
The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.2%
CVSS Severity
CVSS v2 Score 2.1
References
- ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
- http://marc.info/?l=linux-kernel&m=108087017610947&w=2
- http://secunia.com/advisories/19607
- http://www.redhat.com/support/errata/RHSA-2005-472.html
- http://www.securityfocus.com/bid/13769
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=126411
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10672
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1117
- ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
- http://marc.info/?l=linux-kernel&m=108087017610947&w=2
- http://secunia.com/advisories/19607
- http://www.redhat.com/support/errata/RHSA-2005-472.html
- http://www.securityfocus.com/bid/13769
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=126411
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10672
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1117
Products affected by CVE-2004-0491
-
cpe:2.3:o:redhat:enterprise_linux:3.0