2.1

CVE-2010-4171

The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary kernel modules).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SystemtapSystemtap Version1.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.4% 0.312
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051115.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051122.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051127.html
http://secunia.com/advisories/42256
Vendor Advisory
http://secunia.com/advisories/42263
Vendor Advisory
http://secunia.com/advisories/42318
Vendor Advisory
http://secunia.com/advisories/46920
http://sources.redhat.com/git/gitweb.cgi?p=systemtap.git%3Ba=commit%3Bh=b7565b41228bea196cefa3a7d43ab67f8f9152e2
http://sources.redhat.com/ml/systemtap/2010-q4/msg00230.html
http://www.debian.org/security/2011/dsa-2348
http://www.redhat.com/support/errata/RHSA-2010-0894.html
http://www.securitytracker.com/id?1024754
http://www.securityfocus.com/bid/44917
https://bugzilla.redhat.com/show_bug.cgi?id=653606
https://exchange.xforce.ibmcloud.com/vulnerabilities/63345