CVE-2004-0427

Vulnerability Description

The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows local users to cause a denial of service (memory exhaustion) via the clone (CLONE_VM) system call.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• ftp://patches.sgi.com/support/free/security/advisories/20040504-01-U.ascBroken LinkPatchVendor Advisory
• ftp://patches.sgi.com/support/free/security/advisories/20040505-01-U.ascBroken LinkPatchVendor Advisory
• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846Broken Link
• http://fedoranews.org/updates/FEDORA-2004-111.shtmlThird Party Advisory
• http://linux.bkbits.net:8080/linux-2.4/cset%40407bf20eDeeejm8t36_tpvSE-8EFHABroken Link
• http://linux.bkbits.net:8080/linux-2.6/cset%40407b1217x4jtqEkpFW2g_-RcF0726ABroken Link
• http://marc.info/?l=linux-kernel&m=108139073506983&w=2Mailing ListThird Party Advisory
• http://secunia.com/advisories/11429Broken Link
• http://secunia.com/advisories/11464Broken Link
• http://secunia.com/advisories/11486Broken Link
• http://secunia.com/advisories/11541Broken Link
• http://secunia.com/advisories/11861Broken Link
• http://secunia.com/advisories/11891Broken Link
• http://secunia.com/advisories/11892Broken Link
• http://secunia.com/advisories/20162Broken Link