CVE-2009-0605

Priority
Medium
Description
Stack consumption vulnerability in the do_page_fault function in
arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users
to cause a denial of service (memory corruption) or possibly gain
privileges via unspecified vectors that trigger page faults on a machine
that has a registered Kprobes probe.
Ubuntu-Description
The page fault handler could consume stack memory. A local attacker
could exploit this to crash the system or gain root privileges with a
Kprobe registered.
References
Notes
 jdsstrand> needs CONFIG_KPROBES set. Ubuntu 7.10 and after have this set.
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Source: linux (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:35:11 UTC (commit 9756)