CVE-2009-0605

Priority
Medium
Description
Stack consumption vulnerability in the do_page_fault function in
arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users
to cause a denial of service (memory corruption) or possibly gain
privileges via unspecified vectors that trigger page faults on a machine
that has a registered Kprobes probe.
Ubuntu-Description
The page fault handler could consume stack memory. A local attacker
could exploit this to crash the system or gain root privileges with a
Kprobe registered.
References
Notes
jdsstrand> needs CONFIG_KPROBES set. Ubuntu 7.10 and after have this set.
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-23.52)
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:19:38 UTC (commit 5347)