Oval Definition:
oval:org.mitre.oval:def:1117
Revision Date
:
2005-08-18
Version
:
3
Title
:
mlock Memory Page Tracking Vulnerability
Description
:
The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2004-0491
Platform(s)
:
Red Hat Enterprise Linux 3
Product(s)
:
Linux kernel
Definition Synopsis
Red Hat Enterprise 3 is installed
AND
kernel, kernel-smp or kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL
kernel RPM earlier than 0:2.4.21-32.0.1.EL
OR
kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL
OR
kernel-smp RPM earlier than 0:2.4.21-32.0.1.EL
BACK