7.2

CVE-2009-1895

The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PER_CLEAR_ON_SETID setting that does not clear the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to (1) conduct NULL pointer dereference attacks, (2) bypass the mmap_min_addr protection mechanism, or (3) defeat address space layout randomization (ASLR).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version <= 2.6.31
LinuxLinux Kernel Version2.6.31 Updaterc1
LinuxLinux Kernel Version2.6.31 Updaterc2
DebianDebian Linux Version4.0
DebianDebian Linux Version5.0
CanonicalUbuntu Linux Version6.06 SwEditionlts
CanonicalUbuntu Linux Version8.04 SwEditionlts
CanonicalUbuntu Linux Version8.10
CanonicalUbuntu Linux Version9.04
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.44% 0.349
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.mandriva.com/security/advisories?name=MDVSA-2011:051
Third Party Advisory
http://secunia.com/advisories/37471
Third Party Advisory
http://www.securityfocus.com/archive/1/507985/100/0/threaded
Third Party Advisory
VDB Entry
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
Third Party Advisory
http://www.vupen.com/english/advisories/2009/3316
Third Party Advisory
http://secunia.com/advisories/36131
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2009-1193.html
Third Party Advisory
http://www.securityfocus.com/archive/1/512019/100/0/threaded
Third Party Advisory
VDB Entry
https://rhn.redhat.com/errata/RHSA-2009-1550.html
Third Party Advisory
http://secunia.com/advisories/36051
Third Party Advisory
http://wiki.rpath.com/Advisories:rPSA-2009-0111
Third Party Advisory
http://www.debian.org/security/2009/dsa-1844
Third Party Advisory
http://www.securityfocus.com/archive/1/505254/100/0/threaded
Third Party Advisory
VDB Entry
http://secunia.com/advisories/36045
Third Party Advisory
http://www.ubuntu.com/usn/usn-807-1
Third Party Advisory
http://secunia.com/advisories/36054
Third Party Advisory
http://www.debian.org/security/2009/dsa-1845
Third Party Advisory
http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html
Patch
Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f9fabcb58a6d26d6efde842d1703ac7cfa9427b6
http://patchwork.kernel.org/patch/32598/
Patch
Vendor Advisory
http://secunia.com/advisories/35801
Third Party Advisory
http://secunia.com/advisories/36116
Third Party Advisory
http://secunia.com/advisories/36759
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc3
Vendor Advisory
http://www.osvdb.org/55807
Broken Link
http://www.redhat.com/support/errata/RHSA-2009-1438.html
Third Party Advisory
http://www.securityfocus.com/bid/35647
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2009/1866
Patch
Third Party Advisory
https://bugs.launchpad.net/bugs/cve/2009-1895
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11768
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7826
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9453
Third Party Advisory
https://rhn.redhat.com/errata/RHSA-2009-1540.html
Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00166.html
Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00223.html
Third Party Advisory