The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly check return values from calls to the kernel_read function, which may allow local users to modify sensitive memory in a setuid program and execute arbitrary code.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-01-09 21:00
Updated : 2017-10-10 18:29
NVD link : CVE-2004-1070
Mitre link : CVE-2004-1070
JSON object : View
CWE
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux
- linux_advanced_workstation
- fedora_core
turbolinux
- turbolinux_server
suse
- suse_linux
linux
- linux_kernel
trustix
- secure_linux