CVE-2009-2847
First published: Fri Jul 31 2009(Updated: )
Description of problem: do_sigaltstack: avoid copying 'stack_t' as a structure to user space Ulrich Drepper correctly points out that there is generally padding in the structure on 64-bit hosts, and that copying the structure from kernel to user space can leak information from the kernel stack in those padding bytes. Avoid the whole issue by just copying the three members one by one instead, which also means that the function also can avoid the need for a stack frame. This also happens to match how we copy the new structure from user space, so it all even makes sense. Upstream commit: <a href="http://git.kernel.org/linus/0083fc2c50e6c5127c2802ad323adf8143ab7856">http://git.kernel.org/linus/0083fc2c50e6c5127c2802ad323adf8143ab7856</a>
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:2.6.24.7-132.el5 | 0:2.6.24.7-132.el5 |
| redhat/kernel | <0:2.6.18-164.el5 | 0:2.6.18-164.el5 |
| redhat/kernel | <0:2.6.18-128.8.1.el5 | 0:2.6.18-128.8.1.el5 |
| Linux kernel | =2.6.24.7 | |
| Linux kernel | =2.6.25.15 | |
| Linux Linux kernel | <=2.6.16.31 | |
| Linux Linux kernel | =2.6 | |
| Linux Linux kernel | =2.6.0 | |
| Linux Linux kernel | =2.6.1 | |
| Linux Linux kernel | =2.6.10 | |
| Linux Linux kernel | =2.6.11 | |
| Linux Linux kernel | =2.6.11.1 | |
| Linux Linux kernel | =2.6.11.2 | |
| Linux Linux kernel | =2.6.11.3 | |
| Linux Linux kernel | =2.6.11.4 | |
| Linux Linux kernel | =2.6.11.5 | |
| Linux Linux kernel | =2.6.11.6 | |
| Linux Linux kernel | =2.6.11.7 | |
| Linux Linux kernel | =2.6.11.8 | |
| Linux Linux kernel | =2.6.11.9 | |
| Linux Linux kernel | =2.6.11.10 | |
| Linux Linux kernel | =2.6.11.11 | |
| Linux Linux kernel | =2.6.11.12 | |
| Linux Linux kernel | =2.6.12 | |
| Linux Linux kernel | =2.6.12.1 | |
| Linux Linux kernel | =2.6.12.2 | |
| Linux Linux kernel | =2.6.12.3 | |
| Linux Linux kernel | =2.6.12.4 | |
| Linux Linux kernel | =2.6.12.5 | |
| Linux Linux kernel | =2.6.12.6 | |
| Linux Linux kernel | =2.6.13 | |
| Linux Linux kernel | =2.6.13.1 | |
| Linux Linux kernel | =2.6.13.2 | |
| Linux Linux kernel | =2.6.13.3 | |
| Linux Linux kernel | =2.6.13.4 | |
| Linux Linux kernel | =2.6.13.5 | |
| Linux Linux kernel | =2.6.14 | |
| Linux Linux kernel | =2.6.14.1 | |
| Linux Linux kernel | =2.6.14.2 | |
| Linux Linux kernel | =2.6.14.3 | |
| Linux Linux kernel | =2.6.14.4 | |
| Linux Linux kernel | =2.6.14.5 | |
| Linux Linux kernel | =2.6.14.6 | |
| Linux Linux kernel | =2.6.14.7 | |
| Linux Linux kernel | =2.6.15 | |
| Linux Linux kernel | =2.6.15.1 | |
| Linux Linux kernel | =2.6.15.2 | |
| Linux Linux kernel | =2.6.15.3 | |
| Linux Linux kernel | =2.6.15.4 | |
| Linux Linux kernel | =2.6.15.5 | |
| Linux Linux kernel | =2.6.15.6 | |
| Linux Linux kernel | =2.6.15.7 | |
| Linux Linux kernel | =2.6.16 | |
| Linux Linux kernel | =2.6.16.1 | |
| Linux Linux kernel | =2.6.16.2 | |
| Linux Linux kernel | =2.6.16.3 | |
| Linux Linux kernel | =2.6.16.10 | |
| Linux Linux kernel | =2.6.16.11 | |
| Linux Linux kernel | =2.6.16.12 | |
| Linux Linux kernel | =2.6.16.13 | |
| Linux Linux kernel | =2.6.16.14 | |
| Linux Linux kernel | =2.6.16.15 | |
| Linux Linux kernel | =2.6.16.16 | |
| Linux Linux kernel | =2.6.16.17 | |
| Linux Linux kernel | =2.6.16.18 | |
| Linux Linux kernel | =2.6.16.19 | |
| Linux Linux kernel | =2.6.16.20 | |
| Linux Linux kernel | =2.6.16.21 | |
| Linux Linux kernel | =2.6.16.22 | |
| Linux Linux kernel | =2.6.16.23 | |
| Linux Linux kernel | =2.6.16.24 | |
| Linux Linux kernel | =2.6.16.25 | |
| Linux Linux kernel | =2.6.16.26 | |
| Linux Linux kernel | =2.6.16.27 | |
| Linux Linux kernel | =2.6.16.28 | |
| Linux Linux kernel | =2.6.16.29 | |
| Linux Linux kernel | =2.6.16.30 | |
| Linux Linux kernel | =2.6.16.31 | |
| Linux Linux kernel | =2.6.16.31--rc1 | |
| Linux Linux kernel | =2.6.16.31--rc2 | |
| Linux Linux kernel | =2.6.16.31--rc3 | |
| Linux Linux kernel | =2.6.16.31--rc4 | |
| Linux Linux |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=0083fc2c50e6c5127c2802ad323adf8143ab7856
- http://rhn.redhat.com/errata/RHSA-2009-1243.html
- http://secunia.com/advisories/36136
- http://secunia.com/advisories/36501
- http://secunia.com/advisories/36562
- http://secunia.com/advisories/36759
- http://secunia.com/advisories/37105
- http://secunia.com/advisories/37471
- http://www.exploit-db.com/exploits/9352
- http://www.openwall.com/lists/oss-security/2009/08/04/1
- http://www.openwall.com/lists/oss-security/2009/08/05/1
- http://www.openwall.com/lists/oss-security/2009/08/26/2
- http://www.redhat.com/support/errata/RHSA-2009-1438.html
- http://www.securityfocus.com/archive/1/507985/100/0/threaded
- http://www.ubuntu.com/usn/USN-852-1
- http://www.vmware.com/security/advisories/VMSA-2009-0016.html
- http://www.vupen.com/english/advisories/2009/3316
- https://bugzilla.redhat.com/show_bug.cgi?id=515392
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10637
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8405
- https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=0083fc2c50e6c5127c2802ad323adf8143ab7856
- http://git.kernel.org/linus/0083fc2c50e6c5127c2802ad323adf8143ab7856
- http://milw0rm.com/exploits/9352
- https://access.redhat.com/security/cve/CVE-2009-2847
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2847
- http://www.milw0rm.com/exploits/9352
- http://admin.fedoraproject.org/updates/kernel-2.6.29.6-217.2.16.fc11
- https://rhn.redhat.com/errata/RHSA-2009-1239.html
- https://rhn.redhat.com/errata/RHSA-2009-1243.html
- https://rhn.redhat.com/errata/RHSA-2009-1438.html
- https://rhn.redhat.com/errata/RHSA-2009-1466.html
- http://admin.fedoraproject.org/updates/kernel-2.6.27.35-170.2.94.fc10
- https://www.cve.org/CVERecord?id=CVE-2009-2847 https://nvd.nist.gov/vuln/detail/CVE-2009-2847
- https://access.redhat.com/errata/RHSA-2009:1239
- https://access.redhat.com/errata/RHSA-2009:1438
- https://access.redhat.com/errata/RHSA-2009:1243
- https://access.redhat.com/errata/RHSA-2009:1466
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2847.json
Parent vulnerabilities
(Appears in the following advisories)
- collector/nvd-historical
- collector/nvd-index
- collector/nvd-api
- agent/author
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2009-2847
- agent/severity
- agent/references
- agent/weakness
- agent/remedy
- collector/redhat-cve
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/description
- agent/event
- agent/trending
- vendor/linux
- canonical/linux kernel
- version/linux kernel/2.6.24.7
- version/linux kernel/2.6.25.15
- canonical/linux linux kernel
- version/linux linux kernel/2.6.16.31
- version/linux linux kernel/2.6
- version/linux linux kernel/2.6.0
- version/linux linux kernel/2.6.1
- version/linux linux kernel/2.6.10
- version/linux linux kernel/2.6.11
- version/linux linux kernel/2.6.11.1
- version/linux linux kernel/2.6.11.2
- version/linux linux kernel/2.6.11.3
- version/linux linux kernel/2.6.11.4
- version/linux linux kernel/2.6.11.5
- version/linux linux kernel/2.6.11.6
- version/linux linux kernel/2.6.11.7
- version/linux linux kernel/2.6.11.8
- version/linux linux kernel/2.6.11.9
- version/linux linux kernel/2.6.11.10
- version/linux linux kernel/2.6.11.11
- version/linux linux kernel/2.6.11.12
- version/linux linux kernel/2.6.12
- version/linux linux kernel/2.6.12.1
- version/linux linux kernel/2.6.12.2
- version/linux linux kernel/2.6.12.3
- version/linux linux kernel/2.6.12.4
- version/linux linux kernel/2.6.12.5
- version/linux linux kernel/2.6.12.6
- version/linux linux kernel/2.6.13
- version/linux linux kernel/2.6.13.1
- version/linux linux kernel/2.6.13.2
- version/linux linux kernel/2.6.13.3
- version/linux linux kernel/2.6.13.4
- version/linux linux kernel/2.6.13.5
- version/linux linux kernel/2.6.14
- version/linux linux kernel/2.6.14.1
- version/linux linux kernel/2.6.14.2
- version/linux linux kernel/2.6.14.3
- version/linux linux kernel/2.6.14.4
- version/linux linux kernel/2.6.14.5
- version/linux linux kernel/2.6.14.6
- version/linux linux kernel/2.6.14.7
- version/linux linux kernel/2.6.15
- version/linux linux kernel/2.6.15.1
- version/linux linux kernel/2.6.15.2
- version/linux linux kernel/2.6.15.3
- version/linux linux kernel/2.6.15.4
- version/linux linux kernel/2.6.15.5
- version/linux linux kernel/2.6.15.6
- version/linux linux kernel/2.6.15.7
- version/linux linux kernel/2.6.16
- version/linux linux kernel/2.6.16.1
- version/linux linux kernel/2.6.16.2
- version/linux linux kernel/2.6.16.3
- version/linux linux kernel/2.6.16.10
- version/linux linux kernel/2.6.16.11
- version/linux linux kernel/2.6.16.12
- version/linux linux kernel/2.6.16.13
- version/linux linux kernel/2.6.16.14
- version/linux linux kernel/2.6.16.15
- version/linux linux kernel/2.6.16.16
- version/linux linux kernel/2.6.16.17
- version/linux linux kernel/2.6.16.18
- version/linux linux kernel/2.6.16.19
- version/linux linux kernel/2.6.16.20
- version/linux linux kernel/2.6.16.21
- version/linux linux kernel/2.6.16.22
- version/linux linux kernel/2.6.16.23
- version/linux linux kernel/2.6.16.24
- version/linux linux kernel/2.6.16.25
- version/linux linux kernel/2.6.16.26
- version/linux linux kernel/2.6.16.27
- version/linux linux kernel/2.6.16.28
- version/linux linux kernel/2.6.16.29
- version/linux linux kernel/2.6.16.30
- version/linux linux kernel/2.6.16.31--rc1
- version/linux linux kernel/2.6.16.31--rc2
- version/linux linux kernel/2.6.16.31--rc3
- version/linux linux kernel/2.6.16.31--rc4
- canonical/linux linux
- package-manager/redhat