TROYANOSYVIRUS
Volver a CVEs

CVE-2009-2911

N/A

Descripcion

SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operation with a large number of arguments that trigger a kernel stack overflow, (2) cause a denial of service via crafted DWARF expressions that trigger a kernel stack frame overflow, or (3) cause a denial of service (infinite loop) via vectors that trigger creation of large unwind tables, related to Common Information Entry (CIE) and Call Frame Instruction (CFI) records.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado10/22/2009
Ultima modificacion4/23/2026
Fuentenvd
Avistamientos honeypot0

Productos afectados

systemtap:systemtap

Debilidades (CWE)

CWE-264

Referencias

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=41633(secalert@redhat.com)
http://secunia.com/advisories/37167(secalert@redhat.com)
http://sources.redhat.com/bugzilla/show_bug.cgi?id=10750(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2009/10/21/1(secalert@redhat.com)
http://www.securityfocus.com/bid/36778(secalert@redhat.com)
http://www.vupen.com/english/advisories/2009/2989(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=529175(secalert@redhat.com)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00627.html(secalert@redhat.com)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00793.html(secalert@redhat.com)
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=41633(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/37167(af854a3a-2127-422b-91ae-364da2661108)
http://sources.redhat.com/bugzilla/show_bug.cgi?id=10750(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/10/21/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/36778(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/2989(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=529175(af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00627.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00793.html(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.