CVE-2002-1380
Description
Linux kernel 2.2.x allows local users to cause a denial of service (crash) by using the mmap() function with a PROT_READ parameter to access non-readable memory pages through the /proc/pid/mem interface.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
24cpe:2.3:o:linux:linux_kernel:2.2.1:*:*:*:*:*:*:*+ 23 more
- cpe:2.3:o:linux:linux_kernel:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.10:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.11:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.12:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.13:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.14:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.15:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.16:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.17:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.18:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.19:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.20:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.21:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.22:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.23:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.2.9:*:*:*:*:*:*:*
- (no CPE)range: 2.2.x
Patches
Vulnerability mechanics
Root cause
"The Linux kernel 2.2.x mishandles memory access through the /proc/pid/mem interface when using mmap() with PROT_READ on non-readable pages."
Attack vector
A local user can exploit this vulnerability by opening the /proc/pid/mem interface for a target process and then using the mmap() system call with the PROT_READ flag to map non-readable memory pages. Subsequently, attempting to access these mapped pages, for example by writing their contents to standard output, triggers a kernel crash. This vulnerability affects the Linux 2.2 kernel series [ref_id=1].
Affected code
The vulnerability lies within the implementation of the mmap() system call when interacting with the /proc/pid/mem interface in the Linux kernel 2.2.x. Specifically, the code path that handles mapping memory pages with PROT_READ protection on non-readable memory regions is affected. This functionality was removed in the 2.4 kernel series [ref_id=1].
What the fix does
The advisory states that support for mmap() in the /proc/pid/mem implementation was dropped in the 2.4 kernel tree, which mitigates this vulnerability. No specific patch details are provided, but the removal of this functionality prevents the erroneous memory access that led to the denial of service [ref_id=1].
Preconditions
- authThe attacker must have local access to the affected system.
- inputThe attacker needs to execute a specially crafted program that utilizes the mmap() system call on /proc/pid/mem.
Reproduction
The provided reference includes source code that demonstrates how to trigger the denial of service by using mmap() with PROT_READ on non-readable memory pages via /proc/pid/mem [ref_id=1].
Generated on Jun 2, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
7- www.securityfocus.com/bid/6420nvdExploitPatchVendor Advisory
- www.debian.org/security/2003/dsa-336nvd
- www.linuxsecurity.com/advisories/engarde_advisory-2976.htmlnvd
- www.mandrakesoft.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2003-088.htmlnvd
- www.trustix.net/errata/misc/2002/TSL-2002-0083-kernel.asc.txtnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/10884nvd
News mentions
0No linked articles in our index yet.