CVE-2011-2503

Priority
Medium
Description
The insert_module function in runtime/staprun/staprun_funcs.c in the
systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly
validate a module when loading it, which allows local users to gain
privileges via a race condition between the signature validation and the
module initialization.
References
Bugs
Package
Upstream:needs-triage
Patches:
Vendor:http://lists.debian.org/debian-security-announce/2011/msg00228.html
More Information

Updated: 2018-06-26 04:41:33 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)