The do_anonymous_page function in mm/memory.c in the Linux kernel prior to 2.6.27.52, 2.6.32.x prior to 2.6.32.19, 2.6.34.x prior to 2.6.34.4, and 2.6.35.x prior to 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent malicious users to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 2.6.32.5 |
||
linux linux kernel 2.6.35.1 |
||
linux linux kernel 2.6.32.12 |
||
linux linux kernel 2.6.32.9 |
||
linux linux kernel 2.6.32 |
||
linux linux kernel 2.6.32.3 |
||
linux linux kernel 2.6.32.17 |
||
linux linux kernel 2.6.34.1 |
||
linux linux kernel 2.6.32.11 |
||
linux linux kernel |
||
linux linux kernel 2.6.32.14 |
||
linux linux kernel 2.6.32.6 |
||
linux linux kernel 2.6.32.15 |
||
linux linux kernel 2.6.32.18 |
||
linux linux kernel 2.6.32.4 |
||
linux linux kernel 2.6.32.16 |
||
linux linux kernel 2.6.34.3 |
||
linux linux kernel 2.6.32.7 |
||
linux linux kernel 2.6.32.8 |
||
linux linux kernel 2.6.32.2 |
||
linux linux kernel 2.6.32.1 |
||
linux linux kernel 2.6.34.2 |
||
linux linux kernel 2.6.32.10 |
||
linux linux kernel 2.6.32.13 |