CVE-2004-1058

Description

Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline.

References

https://usn.ubuntu.com/38-1/

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10427

https://exchange.xforce.ibmcloud.com/vulnerabilities/17151

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532

http://www.securityfocus.com/bid/11937

http://www.securityfocus.com/bid/11052

http://www.redhat.com/support/errata/RHSA-2006-0191.html

http://www.redhat.com/support/errata/RHSA-2006-0190.html

http://www.redhat.com/support/errata/RHSA-2005-293.html

http://www.mandriva.com/security/advisories?name=MDKSA-2005:022

http://www.gentoo.org/security/en/glsa/glsa-200408-24.xml

http://www.debian.org/security/2006/dsa-1018

http://secunia.com/advisories/21476

http://secunia.com/advisories/19607

http://secunia.com/advisories/19369

http://secunia.com/advisories/19038

http://secunia.com/advisories/18684

http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3