CVE-2004-0491

Published: Dec 31, 2004Modified: Apr 16, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.

Affected (1)

Products: Redhat: Enterprise Linux

Redhat

1 product

Enterprise Linux

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 3.0

References (16)

ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U (unsafe URL)

Source: cve@mitre.org

http://marc.info/?l=linux-kernel&m=108087017610947&w=2

Source: cve@mitre.org

http://secunia.com/advisories/19607

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-472.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/13769

Source: cve@mitre.org

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=126411

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10672

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1117

Source: cve@mitre.org

ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U (unsafe URL)