Grsecurity

Grsecurity Kernel Patch

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.32%
  • Veröffentlicht 25.04.2008 06:05:00
  • Zuletzt bearbeitet 16.06.2026 22:52:47

The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce user_transition_deny and user_transition_allow rules for the (1) sys_setfsuid and (2) sys_setfsgid calls, which allows local users to bypass restrictions...

  • EPSS 0.32%
  • Veröffentlicht 16.01.2007 23:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:13

Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expand_stack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has di...

  • EPSS 0.96%
  • Veröffentlicht 16.01.2007 23:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:13

Unspecified vulnerability in the expand_stack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to...

  • EPSS 0.37%
  • Veröffentlicht 17.01.2006 21:03:00
  • Zuletzt bearbeitet 16.06.2026 22:20:08

The RBAC functionality in grsecurity before 2.1.8 does not properly handle when the admin role creates a service and then exits the shell without unauthenticating, which causes the service to be restarted with the admin role still active.

Exploit
  • EPSS 1%
  • Veröffentlicht 31.12.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:00:07

grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory.