SUSE CVE-2008-3077

arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x8664 platform leaks taskstruct references into the sys32ptrace function, which allows local users to cause a denial of service system crash or have unspecified other impact via unknown vectors, possibly a use-after-free...

Linux Kernel sys32_ptrace()函数多个释放后使用漏洞

CVECAN ID: CVE-2008-3077 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux kernel的arch/x86/kernel/ptrace.c文件中的sys32ptrace函数可能会溢出taskstruct结构的refcount字段，本地攻击者可以在x86-64平台上利用这个漏洞触发释放后使用，导致系统崩溃。 Linux kernel 2.6.25.10 Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

CVE-2008-3077

arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x8664 platform leaks taskstruct references into the sys32ptrace function, which allows local users to cause a denial of service system crash or have unspecified other impact via unknown vectors, possibly a use-after-free...

CVE-2008-3077

The CVE-2008-3077 issue affects the Linux kernel (arch/x86/kernel/ptrace.c) on x86_64 before version 2.6.25.10. The function sys32_ptrace leaks task_struct references, enabling local attackers to trigger a denial of service (system crash) and potentially other impacts via unknown vectors, possibl...