CVE-2004-0077

Summary

CVE	CVE-2004-0077
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2004-03-03 05:00:00 UTC
Updated	2018-05-03 01:29:00 UTC
Description	The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985.

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Linux	Linux Kernel	2.2.0	All	All	All
Operating System	Linux	Linux Kernel	2.2.1	All	All	All
Operating System	Linux	Linux Kernel	2.2.10	All	All	All
Operating System	Linux	Linux Kernel	2.2.11	All	All	All
Operating System	Linux	Linux Kernel	2.2.12	All	All	All
Operating System	Linux	Linux Kernel	2.2.13	All	All	All
Operating System	Linux	Linux Kernel	2.2.14	All	All	All
Operating System	Linux	Linux Kernel	2.2.15	All	All	All
Operating System	Linux	Linux Kernel	2.2.15	pre16	All	All
Operating System	Linux	Linux Kernel	2.2.15_pre20	All	All	All
Operating System	Linux	Linux Kernel	2.2.16	All	All	All
Operating System	Linux	Linux Kernel	2.2.16	pre6	All	All
Operating System	Linux	Linux Kernel	2.2.17	All	All	All
Operating System	Linux	Linux Kernel	2.2.18	All	All	All
Operating System	Linux	Linux Kernel	2.2.19	All	All	All
Operating System	Linux	Linux Kernel	2.2.2	All	All	All
Operating System	Linux	Linux Kernel	2.2.20	All	All	All
Operating System	Linux	Linux Kernel	2.2.21	All	All	All
Operating System	Linux	Linux Kernel	2.2.22	All	All	All
Operating System	Linux	Linux Kernel	2.2.23	All	All	All
Operating System	Linux	Linux Kernel	2.2.24	All	All	All
Operating System	Linux	Linux Kernel	2.2.3	All	All	All
Operating System	Linux	Linux Kernel	2.2.4	All	All	All
Operating System	Linux	Linux Kernel	2.2.5	All	All	All
Operating System	Linux	Linux Kernel	2.2.6	All	All	All
Operating System	Linux	Linux Kernel	2.2.7	All	All	All
Operating System	Linux	Linux Kernel	2.2.8	All	All	All
Operating System	Linux	Linux Kernel	2.2.9	All	All	All
Operating System	Linux	Linux Kernel	2.4.0	All	All	All
Operating System	Linux	Linux Kernel	2.4.0	test1	All	All
Operating System	Linux	Linux Kernel	2.4.0	test10	All	All
Operating System	Linux	Linux Kernel	2.4.0	test11	All	All
Operating System	Linux	Linux Kernel	2.4.0	test12	All	All
Operating System	Linux	Linux Kernel	2.4.0	test2	All	All
Operating System	Linux	Linux Kernel	2.4.0	test3	All	All
Operating System	Linux	Linux Kernel	2.4.0	test4	All	All
Operating System	Linux	Linux Kernel	2.4.0	test5	All	All
Operating System	Linux	Linux Kernel	2.4.0	test6	All	All
Operating System	Linux	Linux Kernel	2.4.0	test7	All	All
Operating System	Linux	Linux Kernel	2.4.0	test8	All	All
Operating System	Linux	Linux Kernel	2.4.0	test9	All	All
Operating System	Linux	Linux Kernel	2.4.1	All	All	All
Operating System	Linux	Linux Kernel	2.4.10	All	All	All
Operating System	Linux	Linux Kernel	2.4.11	All	All	All
Operating System	Linux	Linux Kernel	2.4.12	All	All	All
Operating System	Linux	Linux Kernel	2.4.13	All	All	All
Operating System	Linux	Linux Kernel	2.4.14	All	All	All
Operating System	Linux	Linux Kernel	2.4.15	All	All	All
Operating System	Linux	Linux Kernel	2.4.16	All	All	All
Operating System	Linux	Linux Kernel	2.4.17	All	All	All
Operating System	Linux	Linux Kernel	2.4.18	All	All	All
Operating System	Linux	Linux Kernel	2.4.18	All	x86	All
Operating System	Linux	Linux Kernel	2.4.18	pre1	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre2	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre3	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre4	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre5	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre6	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre7	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre8	All	All
Operating System	Linux	Linux Kernel	2.4.19	All	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre1	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre2	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre3	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre4	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre5	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre6	All	All
Operating System	Linux	Linux Kernel	2.4.2	All	All	All
Operating System	Linux	Linux Kernel	2.4.20	All	All	All
Operating System	Linux	Linux Kernel	2.4.21	All	All	All
Operating System	Linux	Linux Kernel	2.4.21	pre1	All	All
Operating System	Linux	Linux Kernel	2.4.21	pre4	All	All
Operating System	Linux	Linux Kernel	2.4.21	pre7	All	All
Operating System	Linux	Linux Kernel	2.4.22	All	All	All
Operating System	Linux	Linux Kernel	2.4.23	All	All	All
Operating System	Linux	Linux Kernel	2.4.23	pre9	All	All
Operating System	Linux	Linux Kernel	2.4.24	All	All	All
Operating System	Linux	Linux Kernel	2.4.3	All	All	All
Operating System	Linux	Linux Kernel	2.4.4	All	All	All
Operating System	Linux	Linux Kernel	2.4.5	All	All	All
Operating System	Linux	Linux Kernel	2.4.6	All	All	All
Operating System	Linux	Linux Kernel	2.4.7	All	All	All
Operating System	Linux	Linux Kernel	2.4.8	All	All	All
Operating System	Linux	Linux Kernel	2.4.9	All	All	All
Operating System	Linux	Linux Kernel	2.6.0	All	All	All
Operating System	Linux	Linux Kernel	2.6.0	test1	All	All
Operating System	Linux	Linux Kernel	2.6.0	test10	All	All
Operating System	Linux	Linux Kernel	2.6.0	test11	All	All
Operating System	Linux	Linux Kernel	2.6.0	test2	All	All
Operating System	Linux	Linux Kernel	2.6.0	test3	All	All
Operating System	Linux	Linux Kernel	2.6.0	test4	All	All
Operating System	Linux	Linux Kernel	2.6.0	test5	All	All
Operating System	Linux	Linux Kernel	2.6.0	test6	All	All
Operating System	Linux	Linux Kernel	2.6.0	test7	All	All
Operating System	Linux	Linux Kernel	2.6.0	test8	All	All
Operating System	Linux	Linux Kernel	2.6.0	test9	All	All
Operating System	Linux	Linux Kernel	2.6.1	rc1	All	All
Operating System	Linux	Linux Kernel	2.6.1	rc2	All	All
Operating System	Linux	Linux Kernel	2.6.2	All	All	All
Operating System	Linux	Linux Kernel	2.6_test9_cvs	All	All	All
Operating System	Linux	Linux Kernel	2.2.0	All	All	All
Operating System	Linux	Linux Kernel	2.2.1	All	All	All
Operating System	Linux	Linux Kernel	2.2.10	All	All	All
Operating System	Linux	Linux Kernel	2.2.11	All	All	All
Operating System	Linux	Linux Kernel	2.2.12	All	All	All
Operating System	Linux	Linux Kernel	2.2.13	All	All	All
Operating System	Linux	Linux Kernel	2.2.14	All	All	All
Operating System	Linux	Linux Kernel	2.2.15	All	All	All
Operating System	Linux	Linux Kernel	2.2.15	pre16	All	All
Operating System	Linux	Linux Kernel	2.2.15_pre20	All	All	All
Operating System	Linux	Linux Kernel	2.2.16	All	All	All
Operating System	Linux	Linux Kernel	2.2.16	pre6	All	All
Operating System	Linux	Linux Kernel	2.2.17	All	All	All
Operating System	Linux	Linux Kernel	2.2.18	All	All	All
Operating System	Linux	Linux Kernel	2.2.19	All	All	All
Operating System	Linux	Linux Kernel	2.2.2	All	All	All
Operating System	Linux	Linux Kernel	2.2.20	All	All	All
Operating System	Linux	Linux Kernel	2.2.21	All	All	All
Operating System	Linux	Linux Kernel	2.2.22	All	All	All
Operating System	Linux	Linux Kernel	2.2.23	All	All	All
Operating System	Linux	Linux Kernel	2.2.24	All	All	All
Operating System	Linux	Linux Kernel	2.2.3	All	All	All
Operating System	Linux	Linux Kernel	2.2.4	All	All	All
Operating System	Linux	Linux Kernel	2.2.5	All	All	All
Operating System	Linux	Linux Kernel	2.2.6	All	All	All
Operating System	Linux	Linux Kernel	2.2.7	All	All	All
Operating System	Linux	Linux Kernel	2.2.8	All	All	All
Operating System	Linux	Linux Kernel	2.2.9	All	All	All
Operating System	Linux	Linux Kernel	2.4.0	All	All	All
Operating System	Linux	Linux Kernel	2.4.0	test1	All	All
Operating System	Linux	Linux Kernel	2.4.0	test10	All	All
Operating System	Linux	Linux Kernel	2.4.0	test11	All	All
Operating System	Linux	Linux Kernel	2.4.0	test12	All	All
Operating System	Linux	Linux Kernel	2.4.0	test2	All	All
Operating System	Linux	Linux Kernel	2.4.0	test3	All	All
Operating System	Linux	Linux Kernel	2.4.0	test4	All	All
Operating System	Linux	Linux Kernel	2.4.0	test5	All	All
Operating System	Linux	Linux Kernel	2.4.0	test6	All	All
Operating System	Linux	Linux Kernel	2.4.0	test7	All	All
Operating System	Linux	Linux Kernel	2.4.0	test8	All	All
Operating System	Linux	Linux Kernel	2.4.0	test9	All	All
Operating System	Linux	Linux Kernel	2.4.1	All	All	All
Operating System	Linux	Linux Kernel	2.4.10	All	All	All
Operating System	Linux	Linux Kernel	2.4.11	All	All	All
Operating System	Linux	Linux Kernel	2.4.12	All	All	All
Operating System	Linux	Linux Kernel	2.4.13	All	All	All
Operating System	Linux	Linux Kernel	2.4.14	All	All	All
Operating System	Linux	Linux Kernel	2.4.15	All	All	All
Operating System	Linux	Linux Kernel	2.4.16	All	All	All
Operating System	Linux	Linux Kernel	2.4.17	All	All	All
Operating System	Linux	Linux Kernel	2.4.18	All	All	All
Operating System	Linux	Linux Kernel	2.4.18	All	x86	All
Operating System	Linux	Linux Kernel	2.4.18	pre1	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre2	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre3	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre4	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre5	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre6	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre7	All	All
Operating System	Linux	Linux Kernel	2.4.18	pre8	All	All
Operating System	Linux	Linux Kernel	2.4.19	All	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre1	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre2	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre3	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre4	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre5	All	All
Operating System	Linux	Linux Kernel	2.4.19	pre6	All	All
Operating System	Linux	Linux Kernel	2.4.2	All	All	All
Operating System	Linux	Linux Kernel	2.4.20	All	All	All
Operating System	Linux	Linux Kernel	2.4.21	All	All	All
Operating System	Linux	Linux Kernel	2.4.21	pre1	All	All
Operating System	Linux	Linux Kernel	2.4.21	pre4	All	All
Operating System	Linux	Linux Kernel	2.4.21	pre7	All	All
Operating System	Linux	Linux Kernel	2.4.22	All	All	All
Operating System	Linux	Linux Kernel	2.4.23	All	All	All
Operating System	Linux	Linux Kernel	2.4.23	pre9	All	All
Operating System	Linux	Linux Kernel	2.4.24	All	All	All
Operating System	Linux	Linux Kernel	2.4.3	All	All	All
Operating System	Linux	Linux Kernel	2.4.4	All	All	All
Operating System	Linux	Linux Kernel	2.4.5	All	All	All
Operating System	Linux	Linux Kernel	2.4.6	All	All	All
Operating System	Linux	Linux Kernel	2.4.7	All	All	All
Operating System	Linux	Linux Kernel	2.4.8	All	All	All
Operating System	Linux	Linux Kernel	2.4.9	All	All	All
Operating System	Linux	Linux Kernel	2.6.0	All	All	All
Operating System	Linux	Linux Kernel	2.6.0	test1	All	All
Operating System	Linux	Linux Kernel	2.6.0	test10	All	All
Operating System	Linux	Linux Kernel	2.6.0	test11	All	All
Operating System	Linux	Linux Kernel	2.6.0	test2	All	All
Operating System	Linux	Linux Kernel	2.6.0	test3	All	All
Operating System	Linux	Linux Kernel	2.6.0	test4	All	All
Operating System	Linux	Linux Kernel	2.6.0	test5	All	All
Operating System	Linux	Linux Kernel	2.6.0	test6	All	All
Operating System	Linux	Linux Kernel	2.6.0	test7	All	All
Operating System	Linux	Linux Kernel	2.6.0	test8	All	All
Operating System	Linux	Linux Kernel	2.6.0	test9	All	All
Operating System	Linux	Linux Kernel	2.6.1	rc1	All	All
Operating System	Linux	Linux Kernel	2.6.1	rc2	All	All
Operating System	Linux	Linux Kernel	2.6.2	All	All	All
Operating System	Linux	Linux Kernel	2.6_test9_cvs	All	All	All
Operating System	Netwosix	Netwosix Linux	1.0	All	All	All
Operating System	Netwosix	Netwosix Linux	1.0	All	All	All
Application	Redhat	Bigmem Kernel	2.4.20-8	All	i686	All
Application	Redhat	Bigmem Kernel	2.4.20-8	All	i686	All
Application	Redhat	Kernel	2.4.20-8	All	athlon	All
Application	Redhat	Kernel	2.4.20-8	All	athlon_smp	All
Application	Redhat	Kernel	2.4.20-8	All	i386	All
Application	Redhat	Kernel	2.4.20-8	All	i686	All
Application	Redhat	Kernel	2.4.20-8	All	i686_smp	All
Application	Redhat	Kernel	2.4.20-8	All	athlon	All
Application	Redhat	Kernel	2.4.20-8	All	athlon_smp	All
Application	Redhat	Kernel	2.4.20-8	All	i386	All
Application	Redhat	Kernel	2.4.20-8	All	i686	All
Application	Redhat	Kernel	2.4.20-8	All	i686_smp	All
Application	Redhat	Kernel Doc	2.4.20-8	All	i386	All
Application	Redhat	Kernel Doc	2.4.20-8	All	i386	All
Application	Redhat	Kernel Source	2.4.20-8	All	i386_src	All
Application	Redhat	Kernel Source	2.4.20-8	All	i386_src	All
Operating System	Trustix	Secure Linux	1.5	All	All	All
Operating System	Trustix	Secure Linux	2.0	All	All	All
Operating System	Trustix	Secure Linux	1.5	All	All	All
Operating System	Trustix	Secure Linux	2.0	All	All	All

References

Reference	Source	Link	Tags
Debian -- Security Information -- DSA-441-1 linux-kernel-2.4.17-mips+mipsel	DEBIAN	www.debian.org
Debian -- Security Information -- DSA-444-1 linux-kernel-2.4.17-ia64	DEBIAN	www.debian.org
redhat.com \| Red Hat Support	REDHAT	www.redhat.com
redhat.com \| Red Hat Support	REDHAT	www.redhat.com
'TSLSA-2004-0007 - kernel' - MARC	TRUSTIX	marc.info
Debian -- Security Information -- DSA-450-1 linux-kernel-2.4.19-mips	DEBIAN	www.debian.org
Repository / Oval Repository	OVAL	oval.cisecurity.org
Security Announcement	SUSE	www.novell.com
The Slackware Linux Project: Slackware Security Advisories	SLACKWARE	www.slackware.com
Debian -- Security Information -- DSA-439-1 linux-kernel-2.4.16-arm	DEBIAN	www.debian.org	Patch, Vendor Advisory
Debian -- Security Information -- DSA-466-1 linux-kernel-2.2.10-powerpc-apus	DEBIAN	www.debian.org
Advisories - Mandriva Linux	MANDRAKE	frontal2.mandriva.com
20040218 Second critical mremap() bug found in all Linux kernels	VULNWATCH	archives.neohapsis.com
Debian -- Security Information -- DSA-475-1 linux-kernel-2.4.18-hppa	DEBIAN	www.debian.org
O-082: Red Hat Updated Kernel Packages Resolve Security Vulnerabilities	CIAC	www.ciac.org
Debian -- Security Information -- DSA-470-1 linux-kernel-2.4.17-hppa	DEBIAN	www.debian.org
redhat.com \| Red Hat Support	REDHAT	www.redhat.com
isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt	MISC	isec.pl
Linux Kernel do_mremap Function VMA Limit Local Privilege Escalation Vulnerability	BID	www.securityfocus.com	Exploit, Patch, Vendor Advisory
Gentoo Linux Documentation -- Linux kernel do_mremap local privilege escalation vulnerability	GENTOO	security.gentoo.org	Patch, Vendor Advisory
Debian -- Security Information -- DSA-514-1 kernel-image-sparc-2.2	DEBIAN	www.debian.org
Repository / Oval Repository	OVAL	oval.cisecurity.org
Debian -- Security Information -- DSA-438-1 linux-kernel-2.4.18-alpha+i386+powerpc	DEBIAN	www.debian.org
3986	OSVDB	www.osvdb.org
IBM X-Force Exchange	XF	exchange.xforce.ibmcloud.com
US-CERT Vulnerability Note VU#981222	CERT-VN	www.kb.cert.org	US Government Resource
redhat.com \| Red Hat Support	REDHAT	www.redhat.com
Home - Conectiva	CONECTIVA	distro.conectiva.com.br
'TSLSA-2004-0008 - kernel' - MARC	TRUSTIX	marc.info
'Second critical mremap() bug found in all Linux kernels' - MARC	BUGTRAQ	marc.info
Debian -- Security Information -- DSA-440-1 linux-kernel-2.4.17-powerpc-apus	DEBIAN	www.debian.org
Debian -- Security Information -- DSA-456-1 linux-kernel-2.2.19-arm	DEBIAN	www.debian.org
FedoraNEWS.ORG	FEDORA	fedoranews.org
Debian -- Security Information -- DSA-453-1 linux-kernel-2.2.20-i386+m68k+powerpc	DEBIAN	www.debian.org
Debian -- Security Information -- DSA-454-1 linux-kernel-2.2.22-alpha	DEBIAN	www.debian.org
Debian -- Security Information -- DSA-442-1 linux-kernel-2.4.17-s390	DEBIAN	www.debian.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.