CVE-2004-0077

Name	CVE-2004-0077
Description	The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-438, DSA-439, DSA-440, DSA-441, DSA-442, DSA-444, DSA-450, DSA-453, DSA-454, DSA-456, DSA-466, DSA-470, DSA-475, DSA-514

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin
kernel-image-2.2.10-powerpc-apus	source	woody	2.2.10-13woody1	DSA-466
kernel-image-2.2.19-netwinder	source	woody	20040303	DSA-456
kernel-image-2.2.19-riscpc	source	woody	20040303	DSA-456
kernel-image-2.2.20-amiga	source	woody	2.20-4	DSA-453
kernel-image-2.2.20-atari	source	woody	2.2.20-3	DSA-453
kernel-image-2.2.20-bvme6000	source	woody	2.2.20-3	DSA-453
kernel-image-2.2.20-i386	source	woody	2.2.20-5woody5	DSA-453
kernel-image-2.2.20-mac	source	woody	2.2.20-3	DSA-453
kernel-image-2.2.20-mvme147	source	woody	2.2.20-3	DSA-453
kernel-image-2.2.20-mvme16x	source	woody	2.2.20-3	DSA-453
kernel-image-2.2.20-reiserfs-i386	source	woody	2.2.20-4woody1	DSA-453
kernel-image-2.2.22-alpha	source	woody	2.2.22-2	DSA-454
kernel-image-2.4.16-lart	source	woody	2.4.16-20040204	DSA-439
kernel-image-2.4.16-netwinder	source	woody	2.4.16-20040204	DSA-439
kernel-image-2.4.16-riscpc	source	woody	2.4.16-20040204	DSA-439
kernel-image-2.4.17-hppa	source	woody	32.3	DSA-470
kernel-image-2.4.17-ia64	source	woody	011226.16	DSA-444
kernel-image-2.4.17-s390	source	woody	2.4.17-2.woody.3	DSA-442
kernel-image-2.4.18-1-alpha	source	woody	2.4.18-14	DSA-438
kernel-image-2.4.18-1-i386	source	woody	2.4.18-12.2	DSA-438
kernel-image-2.4.18-hppa	source	woody	62.1	DSA-475
kernel-image-2.4.18-i386bf	source	woody	2.4.18-5woody7	DSA-438
kernel-patch-2.2.19-arm	source	woody	20040303	DSA-456
kernel-patch-2.2.20-powerpc	source	woody	2.2.20-3woody1	DSA-453
kernel-patch-2.4.16-arm	source	woody	20040204	DSA-439
kernel-patch-2.4.17-apus	source	woody	2.4.17-4	DSA-440
kernel-patch-2.4.17-mips	source	woody	2.4.17-0.020226.2.woody5	DSA-441
kernel-patch-2.4.17-s390	source	woody	0.0.20020816-0.woody.2	DSA-442
kernel-patch-2.4.18-powerpc	source	woody	2.4.18-1woody4	DSA-438
kernel-patch-2.4.19-mips	source	woody	2.4.19-4.woody1	DSA-450
kernel-source-2.2.10	source	woody	2.2.10-2	DSA-466
kernel-source-2.2.19	source	woody	2.2.19.1-4woody1	DSA-456
kernel-source-2.2.20	source	woody	2.2.20-5woody3	DSA-514
kernel-source-2.2.20	source	(unstable)	(unfixed)
kernel-source-2.2.22	source	woody	2.2.22-1woody1	DSA-454
kernel-source-2.4.17	source	woody	2.4.17-4	DSA-440
kernel-source-2.4.18	source	woody	2.4.18-14.2	DSA-438
kernel-source-2.4.19	source	woody	2.4.19-0.020911.1.woody3	DSA-450
kernel-source-2.4.27	source	(unstable)	(not affected)

Notes

- kernel-source-2.4.27 <not-affected> (Fixed before initial upload; 2.4.26-pre3)