TROYANOSYVIRUS
Voltar para CVEs

CVE-2009-2911

N/A

Descricao

SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operation with a large number of arguments that trigger a kernel stack overflow, (2) cause a denial of service via crafted DWARF expressions that trigger a kernel stack frame overflow, or (3) cause a denial of service (infinite loop) via vectors that trigger creation of large unwind tables, related to Common Information Entry (CIE) and Call Frame Instruction (CFI) records.

Detalhes CVE

Pontuacao CVSS v3.1N/A
Publicado10/22/2009
Ultima modificacao4/23/2026
Fontenvd
Avistamentos honeypot0

Produtos afetados

systemtap:systemtap

Fraquezas (CWE)

CWE-264

Referencias

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=41633(secalert@redhat.com)
http://secunia.com/advisories/37167(secalert@redhat.com)
http://sources.redhat.com/bugzilla/show_bug.cgi?id=10750(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2009/10/21/1(secalert@redhat.com)
http://www.securityfocus.com/bid/36778(secalert@redhat.com)
http://www.vupen.com/english/advisories/2009/2989(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=529175(secalert@redhat.com)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00627.html(secalert@redhat.com)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00793.html(secalert@redhat.com)
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=41633(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/37167(af854a3a-2127-422b-91ae-364da2661108)
http://sources.redhat.com/bugzilla/show_bug.cgi?id=10750(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/10/21/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/36778(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/2989(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=529175(af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00627.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00793.html(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.