CVE Identifier: CVE-2004-0495 CVSS 1.0 Base Score: 7 CVSS Metrics: - Access Vector: Local - Access Complexity: Low - Authentication: Not Required - Confidentiality Impact: Complete - Integrity Impact: Complete - Availability Impact: Complete Consequences: Gain Privileges Remedies: - For Red Hat Linux: Upgrade to the latest kernel package. Refer to RHSA-2004:255 and RHSA-2004:327-09 for more information. - For SuSE Linux: Upgrade to the latest kernel package. Refer to SuSE Security Announcement SUSE-SA:2004:020 for more information. - For Conectiva Linux: Upgrade to the latest kernel package. Refer to Conectiva Linux Security Announcement CLSA-2004:846 for more information. - For Trustix Secure Linux: Upgrade to the latest kernel package. Refer to Trustix Secure Linux Security Advisory #2004-0041 for more information. Affected Products: - Linux Kernel 2.4.18 - Linux Kernel 2.4.20 - Linux Kernel 2.4.22 - Linux Kernel 2.6.6 rc1 External References: - CVE-2004-0495 - BID-10566 - Trustix Secure Linux Security Advisory #2004-0035 - CIAC Information Bulletin O-164