CVE-2004-0495

Description

Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.

CVSS Metrics

• v2.0•HIGH•Score: 7.2AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 0.06%• Percentile: 18%

Affected Systems

• avaya•converged_communications_server

  2.0

• avaya•modular_messaging_message_storage_server

  s3400

• avaya•s8300

  r2.0.0 | r2.0.1

• avaya•s8500

  r2.0.0 | r2.0.1

• avaya•s8700

  r2.0.0 | r2.0.1

• conectiva•linux

  8.0 | 9.0

• gentoo•linux

  1.4

• linux•linux_kernel

  2.4.18 | 2.4.19 | 2.4.21 | 2.4.22 | 2.4.23 | 2.4.24 | 2.4.25 | 2.4.26 | 2.6.0 | 2.6.1 | 2.6.1:rc1 | 2.6.1:rc2 | 2.6.2 | 2.6.3 | 2.6.4 | 2.6.5 | 2.6.6 | 2.6.6:rc1 | 2.6.7 | 2.6.7:rc1

• redhat•enterprise_linux

  2.1 | 3.0

• suse•suse_email_server

  3.1 | iii

• suse•suse_linux

  7 | 8 | 8.0 | 8.1 | 8.2 | 9.0 | 9.1

References (12)

• http://www.redhat.com/support/errata/RHSA-2004-255.html
• http://www.securityfocus.com/bid/10566
• http://www.redhat.com/support/errata/RHSA-2004-260.html
• https://exchange.xforce.ibmcloud.com/vulnerabilities/16449
• http://lwn.net/Articles/91155/
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2961
• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000845
• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846
• http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:066
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10155
• http://security.gentoo.org/glsa/glsa-200407-02.xml
• http://www.novell.com/linux/security/advisories/2004_20_kernel.html