Race condition in the SystemTap stap tool 0.0.20080705 and 0.0.20090314 allows local users in the stapusr group to insert arbitrary SystemTap kernel modules and gain privileges via unknown vectors.
References
Link | Resource |
---|---|
http://secunia.com/advisories/34441 | Third Party Advisory |
http://secunia.com/advisories/34479 | Third Party Advisory |
http://secunia.com/advisories/34548 | Third Party Advisory |
http://support.avaya.com/elmodocs2/security/ASA-2009-110.htm | Third Party Advisory |
http://www.debian.org/security/2009/dsa-1755 | Patch Third Party Advisory |
http://www.redhat.com/support/errata/RHSA-2009-0373.html | Third Party Advisory |
http://www.vupen.com/english/advisories/2009/0907 | Third Party Advisory |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613 | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2009-03-25 23:30
Updated : 2024-02-28 11:21
NVD link : CVE-2009-0784
Mitre link : CVE-2009-0784
CVE.ORG link : CVE-2009-0784
JSON object : View
Products Affected
systemtap
- systemtap
debian
- debian_linux
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')