Vulnerability Name: | CVE-2011-1781 (CCN-67568) | ||||||||||||||||||||
Assigned: | 2011-05-11 | ||||||||||||||||||||
Published: | 2011-05-11 | ||||||||||||||||||||
Updated: | 2023-02-13 | ||||||||||||||||||||
Summary: | SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding (aka backtracing). | ||||||||||||||||||||
CVSS v3 Severity: | 5.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H)
| ||||||||||||||||||||
CVSS v2 Severity: | 1.2 Low (CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P) 0.9 Low (Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C/E:U/RL:OF/RC:C)
3.4 Low (REDHAT Temporal CVSS v2 Vector: AV:A/AC:H/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
| ||||||||||||||||||||
Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||
References: | Source: MITRE Type: CNA CVE-2011-1781 Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: RHSA-2011-0842 Moderate: systemtap security update Source: CCN Type: SA44608 SystemTap Division By Zero Denial of Service Vulnerabilities Source: CCN Type: SystemTap GIT Repository git://sources.redhat.com/git/systemtap.git Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: SystemTap Web page SystemTap Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: OSVDB ID: 73278 SystemTap runtime/unwind.c compute_expr() Function Divide-by-zero DWARF Information Handling DoS Source: CCN Type: BID-47934 SystemTap DWARF Expression Handling Two Divide-By-Zero Denial of Service Vulnerabilities Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: Red Hat Bugzilla Bug 702687 (CVE-2011-1769) CVE-2011-1769 systemtap: does not guard against DWARF operations div-by-zero errors, which can cause a kernel panic Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: XF Type: UNKNOWN systemtap-computeexpr-dos(67568) Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com | ||||||||||||||||||||
Vulnerable Configuration: | Configuration RedHat 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
BACK |