Debian Security Advisory DSA 417-1 (kernel-patch-2.4.18-powerpc, Kernel-image-2.4.18-1-alpha) Network Vulnerability

Summary

The remote host is missing an update to kernel-patch-2.4.18-powerpc, kernel-image-2.4.18-1-alpha announced via advisory DSA 417-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20417-1

Insight

Paul Starzetz discovered a flaw in bounds checking in mremap() in the Linux kernel (present in version 2.4.x and 2.6.x) which may allow a local attacker to gain root privileges. Version 2.2 is not affected by this bug. For the stable distribution (woody) this problem has been fixed in version 2.4.18-1woody3 for the powerpc architecture. For the unstable distribution (sid) this problem will be fixed soon with newly uploaded packages. We recommend that you upgrade your kernel packages. This problem has

Severity

Classification

CVE CVE-2003-0985

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 070-1 (netkit-telnet)
Debian Security Advisory DSA 099-1 (XChat)
Debian Security Advisory DSA 1046-1 (mozilla)
Debian Security Advisory DSA 1051-1 (mozilla-thunderbird)
Debian Security Advisory DSA 1008-1 (kdegraphics)

Debian Security Advisory DSA 417-1 (kernel-patch-2.4.18-powerpc, kernel-image-2.4.18-1-alpha)

Take action and discover your vulnerabilities