6 matches found
EUVD-2011-2688
Malware in sbrugna...
CVE-2011-2707
The ptracesetxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel memory locations via a crafted PTRACESETXTREGS request...
Design/Logic Flaw
The ptracesetxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel memory locations via a crafted PTRACESETXTREGS request...
CVE-2011-2707
The CVE-2011-2707 entry affects the Linux kernel's arch/xtensa/kernel/ptrace.c, where the ptrace_setxregs() function does not validate user-space pointers. This allows a local user to read kernel memory via a crafted PTRACE_SETXTREGS request, as described for Linux kernel versions before 3.1. Pub...
CVE-2011-2707
The ptracesetxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel memory locations via a crafted PTRACESETXTREGS request...
Linux Kernel Xtensa "ptrace_setxregs()"内存泄露漏洞
CVE ID: CVE-2011-2707 Linux Kernel是Linux操作系统的内核。 Linux Kernel在实现上存在安全漏洞,可被本地攻击者利用泄露敏感信息。 由于arch/xtensa/kernel/ptrace.c 中的"ptracesetxregs"函数没有正确验证提供的指针,此漏洞可造成泄露内核内存。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.kernel.org/...