Vulnerability in Linux Linux_kernel

CVE-2003-0462

A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash).

EPSS: 0.006 (46.1th percentile) — read the EPSS interpretation.

Affected products

Linux Linux_kernel — versions 2.4.0, 2.4.1, 2.4.2
Mandrakesoft Mandrake_linux — versions 8.2, 9.0
Mandrakesoft Mandrake_linux_corporate_server — versions 2.1
Mandrakesoft Mandrake_multi_network_firewall — versions 8.2
N/a — versions n/a

References

cve@mitre.org (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)
cve@mitre.org (vendor-advisory, Patch, x_refsource_DEBIAN, Vendor Advisory)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)