CVE-2004-1068

EPSS 0.06%
Published 10.01.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

A "missing serialization" error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and 2.6.x up to 2.6.9, allows local users to gain privileges via a race condition.

Affected products Warnungen 0 Metrics 2 CWE 0 References 24

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version2.4.0

Linux ≫ Linux Kernel Version2.4.0 Updatetest1

Linux ≫ Linux Kernel Version2.4.0 Updatetest10

Linux ≫ Linux Kernel Version2.4.0 Updatetest11

Linux ≫ Linux Kernel Version2.4.0 Updatetest12

Linux ≫ Linux Kernel Version2.4.0 Updatetest2

Linux ≫ Linux Kernel Version2.4.0 Updatetest3

Linux ≫ Linux Kernel Version2.4.0 Updatetest4

Linux ≫ Linux Kernel Version2.4.0 Updatetest5

Linux ≫ Linux Kernel Version2.4.0 Updatetest6

Linux ≫ Linux Kernel Version2.4.0 Updatetest7

Linux ≫ Linux Kernel Version2.4.0 Updatetest8

Linux ≫ Linux Kernel Version2.4.0 Updatetest9

Linux ≫ Linux Kernel Version2.4.1

Linux ≫ Linux Kernel Version2.4.2

Linux ≫ Linux Kernel Version2.4.3

Linux ≫ Linux Kernel Version2.4.4

Linux ≫ Linux Kernel Version2.4.5

Linux ≫ Linux Kernel Version2.4.6

Linux ≫ Linux Kernel Version2.4.7

Linux ≫ Linux Kernel Version2.4.8

Linux ≫ Linux Kernel Version2.4.9

Linux ≫ Linux Kernel Version2.4.10

Linux ≫ Linux Kernel Version2.4.12

Linux ≫ Linux Kernel Version2.4.13

Linux ≫ Linux Kernel Version2.4.14

Linux ≫ Linux Kernel Version2.4.15

Linux ≫ Linux Kernel Version2.4.16

Linux ≫ Linux Kernel Version2.4.17

Linux ≫ Linux Kernel Version2.4.18

Linux ≫ Linux Kernel Version2.4.18 Editionx86

Linux ≫ Linux Kernel Version2.4.18 Updatepre1

Linux ≫ Linux Kernel Version2.4.18 Updatepre2

Linux ≫ Linux Kernel Version2.4.18 Updatepre3

Linux ≫ Linux Kernel Version2.4.18 Updatepre4

Linux ≫ Linux Kernel Version2.4.18 Updatepre5

Linux ≫ Linux Kernel Version2.4.18 Updatepre6

Linux ≫ Linux Kernel Version2.4.18 Updatepre7

Linux ≫ Linux Kernel Version2.4.18 Updatepre8

Linux ≫ Linux Kernel Version2.4.19

Linux ≫ Linux Kernel Version2.4.19 Updatepre1

Linux ≫ Linux Kernel Version2.4.19 Updatepre2

Linux ≫ Linux Kernel Version2.4.19 Updatepre3

Linux ≫ Linux Kernel Version2.4.19 Updatepre4

Linux ≫ Linux Kernel Version2.4.19 Updatepre5

Linux ≫ Linux Kernel Version2.4.19 Updatepre6

Linux ≫ Linux Kernel Version2.4.20

Linux ≫ Linux Kernel Version2.4.21

Linux ≫ Linux Kernel Version2.4.21 Updatepre1

Linux ≫ Linux Kernel Version2.4.21 Updatepre4

Linux ≫ Linux Kernel Version2.4.21 Updatepre7

Linux ≫ Linux Kernel Version2.4.22

Linux ≫ Linux Kernel Version2.4.23

Linux ≫ Linux Kernel Version2.4.23 Updatepre9

Linux ≫ Linux Kernel Version2.4.23_ow2

Linux ≫ Linux Kernel Version2.4.24

Linux ≫ Linux Kernel Version2.4.24_ow1

Linux ≫ Linux Kernel Version2.4.25

Linux ≫ Linux Kernel Version2.4.26

Linux ≫ Linux Kernel Version2.4.27

Linux ≫ Linux Kernel Version2.4.27 Updatepre1

Linux ≫ Linux Kernel Version2.4.27 Updatepre2

Linux ≫ Linux Kernel Version2.4.27 Updatepre3

Linux ≫ Linux Kernel Version2.4.27 Updatepre4

Linux ≫ Linux Kernel Version2.4.27 Updatepre5

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server_ia64

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server_ia64

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation_ia64

Redhat ≫ Enterprise Linux Version3.0 Editionadvanced_server

Redhat ≫ Enterprise Linux Version3.0 Editionenterprise_server

Redhat ≫ Enterprise Linux Version3.0 Editionworkstation_server

Redhat ≫ Enterprise Linux Desktop Version3.0

Redhat ≫ Linux Advanced Workstation Version2.1 Editionia64

Redhat ≫ Linux Advanced Workstation Version2.1 Editionitanium_processor

Ubuntu ≫ Ubuntu Linux Version4.1 Editionia64

Ubuntu ≫ Ubuntu Linux Version4.1 Editionppc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.06%	0.159

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.2	1.9	10	AV:L/AC:H/Au:N/C:C/I:C/A:C

http://secunia.com/advisories/20162

http://secunia.com/advisories/20163

http://secunia.com/advisories/20202

http://secunia.com/advisories/20338

http://www.debian.org/security/2006/dsa-1067

http://www.debian.org/security/2006/dsa-1069

http://www.debian.org/security/2006/dsa-1070

http://www.debian.org/security/2006/dsa-1082

http://www.redhat.com/support/errata/RHSA-2004-504.html

http://www.redhat.com/support/errata/RHSA-2004-505.html

https://bugzilla.fedora.us/show_bug.cgi?id=2336

http://www.redhat.com/support/errata/RHSA-2004-537.html

http://marc.info/?l=bugtraq&m=110306397320336&w=2

http://www.mandriva.com/security/advisories?name=MDKSA-2005:022

ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U

http://secunia.com/advisories/19607

http://www.novell.com/linux/security/advisories/2004_44_kernel.html

http://www.securityfocus.com/archive/1/381689

http://www.securityfocus.com/bid/11715

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18230

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11384

https://nvd.nist.gov/vuln/detail/CVE-2004-1068

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-1068

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-1068

EUVD