• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Linux VMLinux Arbitrary Kernel Execution Denial of Service Vulnerability

Severity: MODERATE

Description:

Linux is a freely available Unix clone operating system. The Linux kernel was originally written by Linus Torvalds, and is maintained by public domain.

A problem with the kernel could allow local users to deny service to legitimate users of a system. The problem is in the handling of a second kernel instance.

The Linux kernel, when compiled, is essentially an extended library format (ELF) executable. This executable is started during the system bootstrap process, and acts as the driving force of the system, making the system autonomous.

Under normal circumstances, any user logged into the system locally can execute another instance of the kernel from the command line. This second kernel instance is typically killed by the current running kernel through an invalid memory reference signal (SIGSEGV). This is most likely due to the second kernel instance attempting to overlay memory space in use by the current kernel.

However, in the 2.4.10 series kernels, a second instance of the kernel executed from the command line produces unreliable results. Upon execution, the second kernel instance will crash the system, requiring a reboot to resume normal operation.

This problem makes it possible for local users to deny service to legitimate users of the system.

Affected Products:

• Caldera OpenLinux Server 3.1.0
• Caldera OpenLinux Workstation 3.1.0
• Linux kernel 2.4.0
• Linux kernel 2.4.1
• Linux kernel 2.4.10
• Linux kernel 2.4.11
• Linux kernel 2.4.2
• Linux kernel 2.4.3
• Linux kernel 2.4.4
• Linux kernel 2.4.5
• Linux kernel 2.4.6
• Linux kernel 2.4.7
• Linux kernel 2.4.8
• Linux kernel 2.4.9
• MandrakeSoft Linux Mandrake 8.0.0
• MandrakeSoft Linux Mandrake 8.0.0 ppc
• MandrakeSoft Linux Mandrake 8.1.0
• MandrakeSoft Linux Mandrake 8.2.0
• RedHat Enterprise Linux AS 2.1
• RedHat Enterprise Linux AS 2.1 IA64
• RedHat Enterprise Linux ES 2.1
• RedHat Enterprise Linux ES 2.1 IA64
• RedHat Enterprise Linux WS 2.1
• RedHat Enterprise Linux WS 2.1 IA64
• RedHat Linux 7.1.0 alpha
• RedHat Linux 7.1.0 i386
• RedHat Linux 7.1.0 ia64
• RedHat Linux 7.2.0
• RedHat Linux 7.2.0 alpha
• RedHat Linux 7.2.0 i386
• RedHat Linux 7.2.0 ia64
• S.u.S.E. Linux 7.1.0
• S.u.S.E. Linux 7.2.0
• S.u.S.E. Linux 7.3.0
• Slackware Linux 8.0.0
• Sun Linux 5.0.0
• Sun Linux 5.0.3
• Sun Linux 5.0.5

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.