CVE-2009-0605
Priority
Medium
Description
Stack consumption vulnerability in the do_page_fault function in
arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users
to cause a denial of service (memory corruption) or possibly gain
privileges via unspecified vectors that trigger page faults on a machine
that has a registered Kprobes probe.
arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users
to cause a denial of service (memory corruption) or possibly gain
privileges via unspecified vectors that trigger page faults on a machine
that has a registered Kprobes probe.
Ubuntu-Description
The page fault handler could consume stack memory. A local attacker
could exploit this to crash the system or gain root privileges with a
Kprobe registered.
could exploit this to crash the system or gain root privileges with a
Kprobe registered.
References
Notes
jdsstrand> needs CONFIG_KPROBES set. Ubuntu 7.10 and after have this set.
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | released (2.6.24-23.52) |