Bugzilla – Bug 48728
VUL-0: CVE-2003-0985: kernel: mremap bug
Last modified: 2017-04-21 09:14:25 UTC
There is a bug in mremap pretty similar to the recent brk() bug.
So far, the only exploit for this is denial of service (crash and reboot),
but it is not clear yet whether there are more serious avenues of exploit.
Details on the bug and patches will be appended to the bug.
The bug was originally found and reported by Paul Starzetz.
We had expected to be able to release update kernels in January, but
there's pressure from some folks (such as Marcelo) to publish this as
soon as possible, maybe as early as Monday 22nd.
There is also some concern that this issue will leak during the holidays.
Hubert is aware of the bug and has already submitted update kernels.
<!-- SBZ_reproduce -->
exploit will be attached
Created attachment 15547 [details]
Original bug report by Paul Starzetz
Created attachment 15548 [details]
Patch by Andrea Arcangeli
The CVE ID for this issue is CAN-2003-0985
can we close this bug now?
<!-- SBZ_reopen -->Reopened by email@example.com at Thu Feb 19 16:13:35 2004, took initial reporter firstname.lastname@example.org to cc
reopened for verification
Created attachment 16073 [details]
didnt recognize patch
debian also used: