Linux kernel PROT_READ parameter mmap() function denial of service
| linux-protread-mmap-dos (10884) |  Medium Risk |
Description:
Linux kernel is vulnerable to a denial of service, caused by improper validation of users' requests. A local attacker could exploit this vulnerability by using the PROT_READ parameter with the mmap() function to request non-readable memory pages through the /proc/pid/mem interface. The system must be restarted to regain normal functionality.
Consequences:
Denial of Service
Remedy:
For Trustix Secure Linux:
Upgrade to the latest kernel package as listed below. Refer to Trustix Secure Linux Security Advisory #2002-0083 for more information. See References.
Trustix 1.01, 1.1, 1.2, 1.5: 2.2.22-8tr or later
For EnGarde Secure Linux Community Edition and Professional Edition:
Upgrade to the latest kernel package (2.2.19-1.0.30 or later), as listed in EnGarde Secure Linux Security Advisory 20030318-009. See References.
As a workaround, disable the mmap() functionality on the /proc/pid/mem interface.
For other distributions:
Contact your vendor for upgrade or patch information.
References:
- EnGarde Secure Linux Security Advisory ESA-20030318-009: Several 'kernel' vulnerabilities. (From LinuxSecurity archive)
- Razor Security Advisory 12/18/2002: Linux kernel 2.2.x /proc/pid/mem mmap() vulnerability.
- BID-6420: Linux Kernel 2.2 mmap() Local Denial of Service Vulnerability
- CVE-2002-1380: Linux kernel 2.2.x allows local users to cause a denial of service (crash) by using the mmap() function with a PROT_READ parameter to access non-readable memory pages through the /proc/pid/mem interface.
- DSA-336: linux-kernel-2.2.20 -- several vulnerabilities
- MDKSA-2003:039: Updated kernel22 packages fix multiple vulnerabilities
- OSVDB ID: 9590: Linux Kernel mmap() Function PROT_READ Parameter Local DoS
- RHSA-2003-088: New kernel 2.2 packages fix vulnerabilities
Platforms Affected:
- Debian Debian Linux 3.0
- EngardeLinux Secure Linux
- EngardeLinux Secure Professional
- Linux Kernel 2.2.1
- Linux Kernel 2.2.10
- Linux Kernel 2.2.11
- Linux Kernel 2.2.12
- Linux Kernel 2.2.13
- Linux Kernel 2.2.14
- Linux Kernel 2.2.15
- Linux Kernel 2.2.16
- Linux Kernel 2.2.18
- Linux Kernel 2.2.19
- Linux Kernel 2.2.2
- Linux Kernel 2.2.20
- Linux Kernel 2.2.21
- Linux Kernel 2.2.22
- Linux Kernel 2.2.23
- Linux Kernel 2.2.3
- Linux Kernel 2.2.4
- Linux Kernel 2.2.5
- Linux Kernel 2.2.6
- Linux Kernel 2.2.7
- Linux Kernel 2.2.8
- Linux Kernel 2.2.9
- Linux Linux Kernel 2.2.17
- MandrakeSoft Mandrake Linux 7.2
- MandrakeSoft Mandrake Linux 8.1
- MandrakeSoft Mandrake Linux 8.2 PPC
- MandrakeSoft Mandrake Linux 8.2
- RedHat Linux 6.2
- RedHat Linux 7
- Trustix Secure Linux 1.01
- Trustix Secure Linux 1.1
- Trustix Secure Linux 1.2
- Trustix Secure Linux 1.5
Reported:
Dec 18, 2002
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this