| Revision Date: | 2013-04-29 | Version: | 12 | | Title: | Multiple integer signedness errors in the (1) __get_argv and (2) __get_compat_argv functions in tapset/aux_syscalls.stp in SystemTap 1.1 allow local users to cause a denial of service (script crash, or system crash or hang) via a process with a large number of arguments, leading to a buffer overflow. | | Description: | Multiple integer signedness errors in the (1) __get_argv and (2) __get_compat_argv functions in tapset/aux_syscalls.stp in SystemTap 1.1 allow local users to cause a denial of service (script crash, or system crash or hang) via a process with a large number of arguments, leading to a buffer overflow. | | Family: | unix | Class: | vulnerability | | Status: | ACCEPTED | Reference(s): | CVE-2010-0411
| | Platform(s): | CentOS Linux 4
CentOS Linux 5
Oracle Linux 4
Oracle Linux 5
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
| Product(s): | | | Definition Synopsis | | OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4
The operating system installed on the system is Red Hat Enterprise Linux 4
OR CentOS Linux 4.x
OR Oracle Linux 4.x
AND Configuration section
systemtap-runtime is earlier than 0:0.6.2-2.el4_8.1
OR systemtap-testsuite is earlier than 0:0.6.2-2.el4_8.1
OR systemtap is earlier than 0:0.6.2-2.el4_8.1
OR OS Section: RHEL5, CentOS5, Oracle Linux 5
RHEL5, CentOS5 or Oracle Linux 5
The operating system installed on the system is Red Hat Enterprise Linux 5
OR The operating system installed on the system is CentOS Linux 5.x
OR Oracle Linux 5.x
AND Configuration section
systemtap-initscript is earlier than 0:0.9.7-5.el5_4.3
OR systemtap-runtime is earlier than 0:0.9.7-5.el5_4.3
OR systemtap-testsuite is earlier than 0:0.9.7-5.el5_4.3
OR systemtap-client is earlier than 0:0.9.7-5.el5_4.3
OR systemtap-sdt-devel is earlier than 0:0.9.7-5.el5_4.3
OR systemtap is earlier than 0:0.9.7-5.el5_4.3
OR systemtap-server is earlier than 0:0.9.7-5.el5_4.3
|
|